IBM WebSphere Application Server 6.1 < 6.1.0.33 Multiple Vulnerabilities

This script is Copyright (C) 2010-2013 Tenable Network Security, Inc.


Synopsis :

The remote application server is affected by multiple vulnerabilities.

Description :

IBM WebSphere Application Server 6.1 before Fix Pack 33 appears to be
running on the remote host. As such, it is reportedly affected by
multiple vulnerabilities :

- An unspecified cross-site scripting vulnerability
exists in the Administration Console. (PM09250,
PM11778)

- An unspecified error exists when a Java API for XML Web
Services (JAX-WS) application with the WS-Security policy
specifies a Time Stamp value. (PM16014 / PM08360)

- Sensitive information is stored by
'ceiDbPasswordDefaulter' in the
'<WAS_HOME>/logs/managedprofiles/*_create.log file.
(PM12065)

- When security tracing is enabled, it is possible for a
NullPointerException to be thrown when calling a
logout on a LoginContext. (PM02636)

See also :

http://www-01.ibm.com/support/docview.wss?uid=swg21404665
http://www-01.ibm.com/support/docview.wss?uid=swg27009778
http://www-01.ibm.com/support/docview.wss?uid=swg1PM02636
http://www-01.ibm.com/support/docview.wss?uid=swg21443736
http://www-01.ibm.com/support/docview.wss?uid=swg1PM12065
http://www-01.ibm.com/support/docview.wss?uid=swg27007951#61033

Solution :

If using WebSphere Application Server, apply Fix Pack 33 (6.1.0.33) or
later.

Otherwise, if using embedded WebSphere Application Server packaged with
Tivoli Directory Server, apply the latest recommended eWAS fix pack.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.4
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Web Servers

Nessus Plugin ID: 49691 ()

Bugtraq ID: 41148
41149
42801
43425

CVE ID: CVE-2010-0778
CVE-2010-0779
CVE-2010-0781
CVE-2010-3186