IBM WebSphere Application Server 8.0 < Fix Pack 1 Multiple Vulnerabilities

high Nessus Plugin ID 56348
New! Plugin Severity Now Using CVSS v3

The calculated severity for Plugins has been updated to use CVSS v3 by default. Plugins that do not have a CVSS v3 score will fall back to CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Synopsis

The remote application server may be affected by multiple vulnerabilities.

Description

IBM WebSphere Application Server 8.0 before Fix Pack 1 appears to be running on the remote host and is potentially affected by the following vulnerabilities :

- An open redirect vulnerability exists related to the 'logoutExitPage' parameter. This can allow remote attackers to trick users into requesting unintended URLs. (PM35701)

- The administrative console can display a stack trace under unspecified circumstances and can disclose potentially sensitive information to local users.
(PM36620)

- An unspecified error exists that can allow cross-site request forgery attacks. (PM36734)

- A token verification error exists in the bundled OpenSAML library. This error can allow an attacker to bypass security controls with an XML signature wrapping attack via SOAP messages. (PM43254)

- A directory traversal attack is possible via unspecified parameters in the 'help' servlet. (PM45322)

- The JavaServer Faces (JSF) application functionality could allow a remote attacker to read files because it fails to properly handle requests. (PM45992)

- The HTTP server contains an error in the 'ByteRange' filter and can allow denial of service attacks when processing malicious requests. (PM46234)

Solution

Apply Fix Pack 1 for version 8.0 (8.0.0.1) or later.

See Also

https://www-01.ibm.com/support/docview.wss?uid=swg27022958

http://www-01.ibm.com/support/docview.wss?uid=swg24030916

http://www-01.ibm.com/support/docview.wss?uid=swg21512087

Plugin Details

Severity: High

ID: 56348

File Name: websphere_8_0_0_1.nasl

Version: 1.21

Type: remote

Family: Web Servers

Published: 9/30/2011

Updated: 11/15/2018

Dependencies: websphere_detect.nasl

Risk Information

VPR

Risk Factor: High

Score: 8.1

CVSS v2

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.8

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Temporal Vector: E:H/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:ibm:websphere_application_server

Required KB Items: www/WebSphere

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 9/26/2011

Vulnerability Publication Date: 7/15/2011

Exploitable With

Core Impact

Reference Information

CVE: CVE-2011-1355, CVE-2011-1356, CVE-2011-1359, CVE-2011-1368, CVE-2011-1411, CVE-2011-3192

BID: 48709, 48710, 48890, 49303, 49362, 49766, 50463