Lucene search
RootSSV:60356HistorySep 04, 2012 - 12:00 a.m.
IBM WebSphere Application Server管理员权限访问安全绕过漏洞
2012-09-0400:00:00
Root
www.seebug.org
21
0.005 Low
EPSS
Percentile
73.2%
BUGTRAQ ID: 55309
CVE ID: CVE-2012-3325
IBM WebSphere Application Server (WAS)是由IBM遵照开放标准开发并发行的一种应用服务器。
IBM WebSphere Application Server 6.1.0.43、7.0.0.21-7.0.0.23、8.0.0.2-8.0.0.4、8.5.0.0在验证用户凭证时存在错误,可被利用以管理员身份访问应用。成功利用此漏洞需要应用PM44303的临时修复或包含PM44303的修复包。
0
IBM Websphere Application Server 8.0.0.4
IBM Websphere Application Server 8.0 2
IBM Websphere Application Server 7.0.0.23
IBM Websphere Application Server 7.0 21
IBM Websphere Application Server 6.1.0.43
厂商补丁:
IBM
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
Related
ibm
ibm
prion
prion
Design/Logic Flaw
2012-08-30 22:55:00
cve
cve
CVE-2012-3325
2012-08-30 22:55:00
openvas
openvas
IBM Websphere Application Server Multiple Vulnerabilities-02 (Jan 2016)
2016-01-19 00:00:00
nessus
nessus
IBM WebSphere Application Server 8.0 < Fix Pack 5 Multiple Vulnerabilities
2013-01-31 00:00:00
IBM WebSphere Application Server 7.0 < Fix Pack 25 Multiple Vulnerabilities
2012-10-03 00:00:00
IBM WebSphere Application Server 6.1 < Fix Pack 45 Multiple Vulnerabilities
2012-10-02 00:00:00