IBM WebSphere Application Server 8.0 < Fix Pack 1 Multiple Vulnerabilities

high Nessus Plugin ID 56348

Synopsis

The remote application server may be affected by multiple vulnerabilities.

Description

IBM WebSphere Application Server 8.0 before Fix Pack 1 appears to be running on the remote host and is potentially affected by the following vulnerabilities :

- An open redirect vulnerability exists related to the 'logoutExitPage' parameter. This can allow remote attackers to trick users into requesting unintended URLs. (PM35701)

- The administrative console can display a stack trace under unspecified circumstances and can disclose potentially sensitive information to local users.
(PM36620)

- An unspecified error exists that can allow cross-site request forgery attacks. (PM36734)

- A token verification error exists in the bundled OpenSAML library. This error can allow an attacker to bypass security controls with an XML signature wrapping attack via SOAP messages. (PM43254)

- A directory traversal attack is possible via unspecified parameters in the 'help' servlet. (PM45322)

- The JavaServer Faces (JSF) application functionality could allow a remote attacker to read files because it fails to properly handle requests. (PM45992)

- The HTTP server contains an error in the 'ByteRange' filter and can allow denial of service attacks when processing malicious requests. (PM46234)

Solution

Apply Fix Pack 1 for version 8.0 (8.0.0.1) or later.

See Also

https://www-01.ibm.com/support/docview.wss?uid=swg27022958

http://www-01.ibm.com/support/docview.wss?uid=swg24030916

http://www-01.ibm.com/support/docview.wss?uid=swg21512087

Plugin Details

Severity: High

ID: 56348

File Name: websphere_8_0_0_1.nasl

Version: 1.21

Type: remote

Family: Web Servers

Published: 9/30/2011

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: High

Score: 7.7

CVSS v2

Risk Factor: High

Base Score: 7.8

Temporal Score: 6.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

CPE: cpe:/a:ibm:websphere_application_server

Required KB Items: www/WebSphere

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 9/26/2011

Vulnerability Publication Date: 7/15/2011

Exploitable With

Core Impact

Reference Information

CVE: CVE-2011-1355, CVE-2011-1356, CVE-2011-1359, CVE-2011-1368, CVE-2011-1411, CVE-2011-3192

BID: 48709, 48710, 48890, 49303, 49362, 49766, 50463