Test ID:	1.3.6.1.4.1.25623.1.0.105071
Category:	Web Servers
Title:	IBM WebSphere Application Server Information Disclosure Vulnerability (Aug 2014)
Summary:	IBM WebSphere Application Server is prone to an unspecified; remote information disclosure vulnerability because of improper handling of SOAP responses.
Description:	Summary: IBM WebSphere Application Server is prone to an unspecified remote information disclosure vulnerability because of improper handling of SOAP responses. Vulnerability Impact: Attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Affected Software/OS: IBM WebSphere Application Server version 7.0.0.0 through 7.0.0.31, 8.0.0.0 through 8.0.0.8 and 8.5.0.0 through 8.5.5.1. Solution: See the references for a solution. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-0965 AIX APAR: PI11434 http://www-01.ibm.com/support/docview.wss?uid=swg1PI11434 BugTraq ID: 68210 http://www.securityfocus.com/bid/68210 XForce ISS Database: ibm-websphere-cve20140965-info-disc(92878) https://exchange.xforce.ibmcloud.com/vulnerabilities/92878 Common Vulnerability Exposure (CVE) ID: CVE-2014-3022 AIX APAR: PI09594 http://www-01.ibm.com/support/docview.wss?uid=swg1PI09594 BugTraq ID: 68211 http://www.securityfocus.com/bid/68211 XForce ISS Database: ibm-was-cve20143022-info-disc(93060) https://exchange.xforce.ibmcloud.com/vulnerabilities/93060
Copyright	Copyright (C) 2014 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.