IBM WebSphere Application Server < 6.0.2.31 Multiple Vulnerabilities

This script is Copyright (C) 2008-2013 Tenable Network Security, Inc.


Synopsis :

The remote application server is affected by multiple vulnerabilities.

Description :

IBM WebSphere Application Server 6.0.2 before Fix Pack 31 appears to
be running on the remote host. As such, it is reportedly affected by
multiple vulnerabilities :

- By sending a specially crafted HTTP request with the
'Host' header field set to more than 256 bytes, it may
be possible to crash the remote application server.
(PK69371)

- An unspecified security exposure vulnerability exists if
'fileServing' feature is enabled. (PK64302)

- Web services security fails to honor Certificate
Revocation Lists (CRL) configured in Certificate Store
Collections. (PK61258)

- Provided Performance Monitoring Infrastructur (PMI) is
enabled, it may be possible for an local attacker to
obtain sensitive information.

See also :

http://www-01.ibm.com/support/docview.wss?uid=swg1PK69371
http://www-01.ibm.com/support/docview.wss?uid=swg1PK61258
http://www-01.ibm.com/support/docview.wss?uid=swg24020788

Solution :

Apply Fix Pack 31 (6.0.2.31) or later.

Risk factor :

Medium / CVSS Base Score : 6.4
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P)
CVSS Temporal Score : 4.7
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Web Servers

Nessus Plugin ID: 34501 ()

Bugtraq ID: 31839
31186
33700

CVE ID: CVE-2008-4111
CVE-2008-4678
CVE-2008-4679
CVE-2009-0434