SecuritySpace - CVE-2011-0316

Price/Feature Summary | Order | New Vulnerabilities | Confidentiality | Vulnerability Search

Vulnerability Search		Search 61204 CVE descriptions and 32582 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2011-0316

Description: The Administrative Console component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.35 and 7.0 before 7.0.0.15 does not properly restrict access to console servlets, which allows remote attackers to obtain potentially sensitive status information via a direct request.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2011-0316
AIX APAR: PM24372
http://www-01.ibm.com/support/docview.wss?uid=swg1PM24372
BugTraq ID: 46736
http://www.securityfocus.com/bid/46736
http://secunia.com/advisories/42938
http://www.vupen.com/english/advisories/2011/0564
XForce ISS Database: was-consoleservlet-info-disclosure(64558)
http://xforce.iss.net/xforce/xfdb/64558

New User Registration
Email:

UserID:

Passwd:

Please email me your monthly newsletters, informing the latest services, improvements & surveys.

Please email me a vulnerability test announcement whenever a new test is added.

Privacy

Registered User Login

UserID:

Passwd:

Forgot userid or passwd?

Email/Userid:

CVE ID:	CVE-2011-0316
Description:	The Administrative Console component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.35 and 7.0 before 7.0.0.15 does not properly restrict access to console servlets, which allows remote attackers to obtain potentially sensitive status information via a direct request.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0316 AIX APAR: PM24372 http://www-01.ibm.com/support/docview.wss?uid=swg1PM24372 BugTraq ID: 46736 http://www.securityfocus.com/bid/46736 http://secunia.com/advisories/42938 http://www.vupen.com/english/advisories/2011/0564 XForce ISS Database: was-consoleservlet-info-disclosure(64558) http://xforce.iss.net/xforce/xfdb/64558