CVE Reference: CVE-2012-3325

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2012-3325

Description:
IBM WebSphere Application Server (WAS) 6.1.x before 6.1.0.45, 7.0.x before 7.0.0.25, 8.0.x before 8.0.0.5, and 8.5.x Full Profile before 8.5.0.1, when the PM44303 fix is installed, does not properly validate credentials, which allows remote authenticated users to obtain administrative access via unspecified vectors.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/77959

ST
  1027462

SAID
  Secunia Advisory: SA55115
  Secunia Advisory: SA54971

CONFIRM
  http://www.ibm.com/support/docview.wss?uid=swg21609067

BID
  55309

AIXAPAR
  http://www-01.ibm.com/support/docview.wss?uid=swg1PM71296


Return to the previous page.