Summary
Detail | |||
---|---|---|---|
Vendor | Ibm | First view | 2013-09-20 |
Product | Websphere Application Server Feature Pack For Web Services | Last view | 2013-09-20 |
Version | Type | Application | |
Update | |||
Edition | |||
Language | |||
Sofware Edition | |||
Target Software | |||
Target Hardware | |||
Other |
Activity : Overall
COMMON PLATFORM ENUMERATION: Repartition per Version
Related : CVE
Date | Alert | Description | |
---|---|---|---|
6.8 | 2013-09-20 | CVE-2013-4053 | The WS-Security implementation in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47, 7.0 before 7.0.0.31, 8.0 before 8.0.0.8, and 8.5 before 8.5.5.1, and WAS Feature Pack for Web Services 6.1 before 6.1.0.47, when a trust store is configured for XML Digital Signatures, does not properly verify X.509 certificates, which allows remote attackers to obtain privileged access via unspecified vectors. |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
100% (1) | CWE-20 | Improper Input Validation |
Nessus® Vulnerability Scanner
id | Description |
---|---|
2014-01-20 | Name: The remote application server is potentially affected by multiple vulnerabili... File: websphere_7_0_0_31.nasl - Type: ACT_GATHER_INFO |
2014-01-20 | Name: The remote application server may be affected by multiple vulnerabilities. File: websphere_8_0_0_8.nasl - Type: ACT_GATHER_INFO |
2013-12-05 | Name: The remote application server may be affected by multiple vulnerabilities. File: websphere_8_5_5_1.nasl - Type: ACT_GATHER_INFO |
2013-09-20 | Name: The remote application server may be affected by multiple vulnerabilities. File: websphere_6_1_0_47.nasl - Type: ACT_GATHER_INFO |