The Java Naming and Directory Interface (JNDI) implementation in IBM WebSphere Application Server (WAS) 6.0 before 6.0.2.39, 6.1 before 6.1.0.29, and 7.0 before 7.0.0.7 does not properly restrict access to UserRegistry object methods, which allows remote attackers to obtain sensitive information via a crafted method call.

IBM WebSphere Application Server 6.1 before Fix Pack 29 appears to be running on the remote host.  As such, it is reportedly affected by multiple vulnerabilities :

  - A cross-site request forgery vulnerability exists due     to insufficient validation of user-supplied input by     the administrative console. (PK87176)

  - Due to an error in Java Naming and Directory Interface,     it may be possible to obtain sensitive information.
    (PK91414)

  - The administrative console is affected by a     cross-site scripting vulnerability. (PK92057)

IBM WebSphere Application Server 6.0 before Fix Pack 39 for 6.0.2 appears to be running on the remote host.  As such, it is reportedly affected by multiple vulnerabilities :

  - A cross-site request forgery vulnerability exists due     to insufficient validation of user-supplied input by     the administrative console. An authenticated user could     exploit this vulnerability to perform cross-site     scripting attacks. (PK87176)

  - Due to an error in Java Naming and Directory Interface,     it may be possible to obtain sensitive information.
    (PK91414).

The remote host appears to be running IBM WebSphere Application Server 7.0 before fix pack 7.  Such versions are potentially affected by multiple issues : 

  - A cross-site request forgery vulnerability exists due to insufficient validation of user supplied input to the administrative console. (PK87176)

  - Due to an error in Java Naming and Directory Interface, it may be possible to obtain sensitive information. (PK91414)

  - The administrative console is affected by a cross-site scripting vulnerability. (PK92057)

  - It may be possible to bypass security restrictions using a specially crafted HTTP HEAD method. (PK83258)

IBM WebSphere Application Server 7.0 before Fix Pack 7 appears to be running on the remote host.  As such, it is reportedly affected by multiple vulnerabilities :

  - A cross-site request forgery vulnerability exists due     to insufficient validation of user-supplied input by     the administrative console. (PK87176)

  - Due to an error in Java Naming and Directory Interface,     it may be possible to obtain sensitive information.
    (PK91414).

  - The administrative console is affected by a     cross-site scripting vulnerability. (PK92057)

  - It may be possible to bypass security restrictions     using a specially crafted HTTP HEAD method.     (PK83258)

ID	Name	Product	Family	Severity
56683	IBM WebSphere Application Server < 6.1.0.29 Multiple Vulnerabilities	Nessus	Web Servers	medium
44588	IBM WebSphere Application Server 6.0 < 6.0.2.39 Multiple Vulnerabilities	Nessus	Web Servers	medium
5235	IBM WebSphere Application Server < 7.0.0.7 Multiple Vulnerabilities	Nessus Network Monitor	Web Servers	medium
42821	IBM WebSphere Application Server 7.0 < Fix Pack 7	Nessus	Web Servers	medium

Detections

Analytics

CVE-2009-2747

high

Tenable Plugins

medium

medium

medium

medium