Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:24238
HistoryNov 22, 2011 - 12:00 a.m.

IBM WebSphere Application Server JSF应用请求处理信息泄露漏洞

2011-11-2200:00:00
Root
www.seebug.org
7

0.003 Low

EPSS

Percentile

66.5%

JSON

CVE ID:CVE-2011-1368

IBM WebSphere Application Server (WAS)是由IBM遵照开放标准,例如Java EE, XML 还有Web Services,开发并发行的一种应用服务器。
WebSphere Application Server允许远程攻击者获得敏感信息,问题是由于不正确处理JSF应用请求,远程攻击者可未授权查看主机系统上的文件。

IBM WebSphere Application Server 8.0.x
厂商解决方案
IBM WebSphere Application Server 8.0.0 Fix Pack 1 (8.0.0.1)已经修复此漏洞,建议用户下载使用:
http://www.ibm.com/support/docview.wss?uid=swg27022958

Related

cvelist 1
openvas 2
prion 1
cve 1
nessus 1
cvelist
cvelist
CVE-2011-1368
2011-10-29 10:00:00
openvas
openvas
IBM WebSphere Application Server JSF Application Information Disclosure Vulnerability
2011-11-03 00:00:00
IBM WebSphere Application Server JSF Application Information Disclosure Vulnerability
2011-11-03 00:00:00
prion
prion
Code injection
2011-10-29 10:55:00
cve
cve
CVE-2011-1368
2011-10-29 10:55:08
nessus
nessus
IBM WebSphere Application Server 8.0 < Fix Pack 1 Multiple Vulnerabilities
2011-09-30 00:00:00

0.003 Low

EPSS

Percentile

66.5%

JSON
Related for SSV:24238
cvelist1openvas2prion1cve1nessus1