RootSSV:3776IBM WebSphere Portal Server远程管理验证绕过漏洞
0.009 Low
EPSS
Percentile
82.6%
BUGTRAQ ID: 30500
CVE ID:CVE-2008-3423
CNCVE ID:CNCVE-20083423
IBM WebSphere Portal Server是一款企业门户架构服务程序。
IBM WebSphere Portal Server在部分条件下存在验证问题,远程攻击者可以利用漏洞获得管理员权限,未授权访问应用服务程序。
目前没有详细漏洞细节提供。
IBM Websphere Portal Server 6.1.0.0
IBM Websphere Portal Server 6.0.1.3
IBM Websphere Portal Server 6.0.1.1
IBM Websphere Portal Server 6.0.1.0
IBM Websphere Portal Server 6.0.0.1
IBM Websphere Portal Server 6.0.0.0
IBM Websphere Portal Server 5.1.0.5
IBM Websphere Portal Server 5.1.0.4
IBM Websphere Portal Server 5.1.0.3
IBM Websphere Portal Server 5.1.0.2
IBM Websphere Portal Server 5.1.0.1
IBM Websphere Portal Server 5.1.0.0
IBM Websphere Portal Express 6.1.0.0
IBM Websphere Portal Express 6.0.1.3
IBM Websphere Portal Express 6.0.1.1
IBM Websphere Portal Express 6.0.1.0
IBM Websphere Portal Express 6.0.0.1
IBM Websphere Portal Express 6.0.0.0
IBM Websphere Portal Express 5.1.0.5
IBM Websphere Portal Express 5.1.0.4
IBM Websphere Portal Express 5.1.0.3
IBM Websphere Portal Express 5.1.0.2
IBM Websphere Portal Express 5.1.0.1
IBM Websphere Portal Express 5.1.0.0
可参考如下安全公告获得补丁信息:
<a href=“http://www-1.ibm.com/support/docview.wss?rs=688&ca=portall2&uid=swg1PK67104” target=“_blank”>http://www-1.ibm.com/support/docview.wss?rs=688&ca=portall2&uid=swg1PK67104</a>
Related
