SecuritySpace - CVE-2011-1312

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2011-1312

Description: The Administrative Console component in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.31 and 7.x before 7.0.0.15 does not prevent modifications of the primary admin id, which allows remote authenticated administrators to bypass intended access restrictions by mapping a (1) user or (2) group to an administrator role.

Test IDs: 1.3.6.1.4.1.25623.1.0.801864

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2011-1312
AIX APAR: PK88606
http://www-01.ibm.com/support/docview.wss?uid=swg1PK88606

CVE ID:	CVE-2011-1312
Description:	The Administrative Console component in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.31 and 7.x before 7.0.0.15 does not prevent modifications of the primary admin id, which allows remote authenticated administrators to bypass intended access restrictions by mapping a (1) user or (2) group to an administrator role.
Test IDs:	1.3.6.1.4.1.25623.1.0.801864
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1312 AIX APAR: PK88606 http://www-01.ibm.com/support/docview.wss?uid=swg1PK88606