CVE

Id
56568  
CVE No.
CVE-2012-3325  
Status
Candidate  
Description
IBM WebSphere Application Server (WAS) 6.1.x before 6.1.0.45, 7.0.x before 7.0.0.25, 8.0.x before 8.0.0.5, and 8.5.x Full Profile before 8.5.0.1, when the PM44303 fix is installed, does not properly validate credentials, which allows remote authenticated users to obtain administrative access via unspecified vectors.  
Phase
Assigned (20120607)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
585756 56568 CVE-2012-3325 CONFIRM:http://www.ibm.com/support/docview.wss?uid=swg21609067  View
585757 56568 CVE-2012-3325 AIXAPAR:PM71296  View
585758 56568 CVE-2012-3325 URL:http://www-01.ibm.com/support/docview.wss?uid=swg1PM71296  View
585759 56568 CVE-2012-3325 BID:55309  View
585760 56568 CVE-2012-3325 URL:http://www.securityfocus.com/bid/55309  View
585761 56568 CVE-2012-3325 SECTRACK:1027462  View
585762 56568 CVE-2012-3325 URL:http://www.securitytracker.com/id?1027462  View
585763 56568 CVE-2012-3325 SECUNIA:54971  View
585764 56568 CVE-2012-3325 URL:http://secunia.com/advisories/54971  View
585765 56568 CVE-2012-3325 SECUNIA:55115  View
585766 56568 CVE-2012-3325 URL:http://secunia.com/advisories/55115  View
585767 56568 CVE-2012-3325 XF:was-pm44303-security-bypass(77959)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
29646 JVNDB-2012-005353 IBM WebSphere Application Server および WebSphere Virtual Enterprise におけるサービス運用妨害 (DoS) の脆弱性 IBM WebSphere Application Server および WebSphere Virtual Enterprise のプロキシサーバには、サービス運用妨害 (デーモンの停止) 状態となる脆弱性が存在します。 CVE-2012-3330 56568 5 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005353.html  View