Test ID:	1.3.6.1.4.1.25623.1.0.806829
Category:	Web Servers
Title:	IBM WebSphere Application Server Multiple Vulnerabilities (swg21669554)
Summary:	IBM WebSphere Application Server is prone to multiple; vulnerabilities.
Description:	Summary: IBM WebSphere Application Server is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws are due to - insufficient validation of user supplied input by Administration Console. - An error in web server plugin when is configured to retry failed POST requests. Vulnerability Impact: Successful exploitation will allow remote attackers to inject arbitrary web script or HTML and also to cause a denial of service (daemon crash). Affected Software/OS: IBM WebSphere Application Server version 7.x prior to 7.0.0.33, 8.x prior to 8.0.0.9 and 8.5.x prior to 8.5.5.2. Solution: Update to version 7.0.0.33, 8.0.0.9, 8.5.5.2 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-6323 AIX APAR: PI04777 http://www-01.ibm.com/support/docview.wss?uid=swg1PI04777 AIX APAR: PI04880 http://www-01.ibm.com/support/docview.wss?uid=swg1PI04880 BugTraq ID: 67720 http://www.securityfocus.com/bid/67720 XForce ISS Database: ibm-was-cve20136323-xss(88903) https://exchange.xforce.ibmcloud.com/vulnerabilities/88903 Common Vulnerability Exposure (CVE) ID: CVE-2014-0859 AIX APAR: PI08892 http://www-01.ibm.com/support/docview.wss?uid=swg1PI08892 BugTraq ID: 67335 http://www.securityfocus.com/bid/67335 XForce ISS Database: ibm-was-cve20140859-retry(90879) https://exchange.xforce.ibmcloud.com/vulnerabilities/90879
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.