IBM WebSphere Application Server Stax XMLStreamWrite安全绕过漏洞

2009-07-21T00:00:00
ID SSV:11850
Type seebug
Reporter Root
Modified 2009-07-21T00:00:00

Description

Bugraq ID: 35741 CVE ID:CVE-2009-0904 CNCVE ID:CNCVE-20090904

IBM WebSphere Application Server是一款商业性质的WEB应用服务程序。 IBM WebSphere Application Server Stax XMLStreamWrite存在安全绕过问题,远程攻击者可以利用漏洞通过SOAP请求绕过部分安全限制修改数据并发送。 目前没有详细漏洞细节提供。

IBM Websphere Application Server 6.1.2 IBM Websphere Application Server 6.1 23 IBM Websphere Application Server 6.1 22 IBM Websphere Application Server 6.1 21 IBM Websphere Application Server 6.1 20 IBM Websphere Application Server 6.1 19 IBM Websphere Application Server 6.1 18 IBM Websphere Application Server 6.1 17 IBM Websphere Application Server 6.1 15 IBM Websphere Application Server 6.1 13 IBM Websphere Application Server 6.1 12 IBM Websphere Application Server 6.1 10 IBM Websphere Application Server 6.1 .9 IBM Websphere Application Server 6.1 .7 IBM Websphere Application Server 6.1 .6 IBM Websphere Application Server 6.1 .5 IBM Websphere Application Server 6.1 .3 IBM Websphere Application Server 6.1 .2 IBM Websphere Application Server 6.1 .14 IBM Websphere Application Server 6.1 .1 IBM Websphere Application Server 6.1 IBM Websphere Application Server 6.1 IBM Websphere Application Server 6.1 IBM Websphere Application Server 6.1 IBM Websphere Application Server 6.1 IBM Websphere Application Server 6.1 用户可参考如下安全公告获得补丁信息: http://www-01.ibm.com/support/docview.wss?uid=swg1PK84015