IBM WebSphere Application Server < Multiple Vulnerabilities

Medium Nessus Plugin ID 38978


The remote application server is affected by multiple vulnerabilities.


IBM WebSphere Application Server 6.0.2 before Fix Pack 35 appears to be running on the remote host. As such, it is reportedly affected by multiple vulnerabilities :

- Non-standard HTTP methods are allowed. (PK73246)

- A login using the LPTAToken cookie may result in extending LTPAToken expiration time longer than the LTPAToken timeout value. (PK75919)

- Cross-site scripting vulnerabilities exist in sample applications. (PK76720)

- If the admin console is directly accessed from http, the console fails to redirect the connection to a secure login page. (PK77010)

- 'wsadmin' is affected by a security exposure. (PK77495)

- XML digital signature is affected by a security issue.

- In certain cases, application source files are exposed. (PK81387)

- Configservice APIs could display sensitive information. (PK84999)


Apply Fix Pack 35 ( or later.

See Also

Plugin Details

Severity: Medium

ID: 38978

File Name: websphere_6_0_2_35.nasl

Version: $Revision: 1.16 $

Type: remote

Family: Web Servers

Published: 2009/06/02

Modified: 2016/05/06

Dependencies: 57034

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:ibm:websphere_application_server

Required KB Items: www/WebSphere

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2009/06/01

Reference Information

CVE: CVE-2009-1898, CVE-2009-1899, CVE-2009-1900, CVE-2009-1901

BID: 35405

OSVDB: 55074, 55075, 55076, 55077, 55078

Secunia: 35301

CWE: 200