NotCVE - vendor:"Ibm" product:"Websphere Application Server" version:" <= 7.0.0.13"

Page 58 of 328 results (0.018 seconds)

CVSS: 5.0EPSS: 0%CPEs: 8EXPL: 0

CVE-2006-6637

https://notcve.org/view.php?id=CVE-2006-6637

The Servlet Engine and Web Container in IBM WebSphere Application Server (WAS) before 6.0.2.17, when ibm-web-ext.xmi sets fileServingEnabled to true and servlet caching is enabled, allows remote attackers to obtain JSP source code and other sensitive information via "specific requests." El motor de Servlets y el contenedor Web en IBM WebSphere Application Server (WAS) anterior a 6.0.2.17 permite a atacantes remotos leer el código fuente de ficheros JSP y obtener información sensible mediante vectores no especificados. • http://secunia.com/advisories/23414 http://secunia.com/advisories/24478 http://www-1.ibm.com/support/docview.wss?uid=swg21243541 http://www-1.ibm.com/support/docview.wss?uid=swg24015155 http://www-1.ibm.com/support/docview.wss?uid=swg27006876 http://www.securityfocus.com/bid/21636 http://www.securityfocus.com/bid/22991 http://www.vupen.com/english/advisories/2006/5050 http://www.vupen.com/english/advisories/2007/0970 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

CVE-2006-6136

https://notcve.org/view.php?id=CVE-2006-6136

IBM WebSphere Application Server 6.1.0 before Fix Pack 3 (6.1.0.3) does not perform EAL4 authentication checks at the proper time during "registering of response operation," which has unknown impact and attack vectors. IBM WebSphere Application Server 6.1.0 anterior al Fix Pack 3 (6.1.0.3) no realiza las comprobaciones de autenticación EAL4 en el momento adecuado durante el "registro de la operación de respuesta", lo cual tiene impacto y vectores de ataque desconocidos. • http://secunia.com/advisories/23028 http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24013830 http://www-1.ibm.com/support/docview.wss?uid=swg27007951 http://www-1.ibm.com/support/search.wss?rs=0&q=PK29847&apar=only http://www.securityfocus.com/bid/21204 http://www.vupen.com/english/advisories/2006/4639 •

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

CVE-2006-6135

https://notcve.org/view.php?id=CVE-2006-6135

Multiple unspecified vulnerabilities in IBM WebSphere Application Server 6.1.0 before Fix Pack 3 (6.1.0.3) have unknown impact and attack vectors, related to (1) a "Potential security vulnerability" (PK29725) and (2) "Potential security exposure" (PK30831). Múltiples vulnerabilidades no especificadas en IBM WebSphere Application Server 6.1.0 anterior al Fix Pack 3 (6.1.0.3) tienen impacto y vectores de ataque desconocidos, relacionados con (1) una "potencial vulnerabilidad de seguridad" (PK29725) y (2) "una potencial exposición de seguridad" (PK30831). • http://secunia.com/advisories/23028 http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24013830 http://www-1.ibm.com/support/docview.wss?uid=swg27007951 http://www-1.ibm.com/support/search.wss?rs=0&q=PK29725&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=PK30831&apar=only http://www.securityfocus.com/bid/21204 http://www.vupen.com/english/advisories/2006/4639 •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2006-5324

https://notcve.org/view.php?id=CVE-2006-5324

The Web Services Notification (WSN) security component of IBM WebSphere Application Server before 6.1.0.2 allows attackers to obtain unspecified access without supplying a username and password, aka PK28374. El componente de seguridad Web Services Notification (WSN) de IBM WebSphere Application Server anterior a 6.1.0.2 permite a atacantes obtener acceso no especificado sin suministrar nombre de usuario y contraseña, también conocido como PK28374. • http://secunia.com/advisories/22372 http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24013142 http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg27007951 http://www-1.ibm.com/support/search.wss?rs=0&q=PK28374&apar=only http://www.vupen.com/english/advisories/2006/4000 •

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

CVE-2006-5323

https://notcve.org/view.php?id=CVE-2006-5323

Unspecified vulnerability in IBM WebSphere Application Server before 6.1.0.2 has unspecified impact and attack vectors, related to a "possible security exposure," aka PK29360. Vulnerabilidad no especificada en IBM WebSphere Application Server anterior a 6.1.0.2 tiene impacto y vectores de ataque no especificados, relacionado con una "posible exposición de seguridad", también conocido como PK29360. • http://secunia.com/advisories/22372 http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24013142 http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg27007951 http://www-1.ibm.com/support/search.wss?rs=0&q=PK29360&apar=only http://www.vupen.com/english/advisories/2006/4000 •

1...56 57 58 59 60