IBM WebSphere Application Server 8.0 < Fix Pack 7 Multiple Vulnerabilities

Medium Nessus Plugin ID 69449


The remote application server may be affected by multiple vulnerabilities.


IBM WebSphere Application Server 8.0 before Fix Pack 7 appears to be running on the remote host. It is, therefore, potentially affected by the following vulnerabilities :

- A flaw exists related to Apache Ant and file compression that could lead to denial of service conditions. (CVE-2012-2098 / PM90088)

- The TLS protocol in the GSKIT component is vulnerable to a plaintext recovery attack.
(CVE-2013-0169 / PM85211)

- A flaw exists relating to OAuth that could allow a remote attacker to obtain someone else's credentials.
(CVE-2013-0597 / PM85834 / PM87131)

- A flaw exists relating to OpenJPA that is triggered during deserialization, which could allow a remote attacker to write to the file system and potentially execute arbitrary code. Note the vendor states this application is not directly affected by this flaw;
however, this application does include the affected version of OpenJPA. (CVE-2013-1768 / PM86780)

- An input validation flaw exists in the optional 'mod_rewrite' module in the included IBM HTTP Server that could allow arbitrary command execution via HTTP requests containing certain escape sequences.
(CVE-2013-1862 / PM87808)

- A flaw exists related to the optional 'mod_dav' module in the included IBM HTTP Server that could allow denial of service conditions.
(CVE-2013-1896 / PM89996)

- User-supplied input validation errors exist related to the administrative console that could allow cross-site scripting attacks.
(CVE-2013-2967 / PM78614, CVE-2013-4004 / PM81571, CVE-2013-4005 / PM88208)

- An information disclosure vulnerability exists related to incorrect caching by the administrative console.
(CVE-2013-2976 / PM79992)

- A user-supplied input validation error exists that could allow cross-site request forgery (CSRF) attacks to be carried out. (CVE-2013-3029 / PM88746)


Apply Fix Pack 7 for version 8.0 ( or later.

See Also

Plugin Details

Severity: Medium

ID: 69449

File Name: websphere_8_0_0_7.nasl

Version: $Revision: 1.17 $

Type: remote

Family: Web Servers

Published: 2013/08/23

Modified: 2016/05/06

Dependencies: 57034

Risk Information

Risk Factor: Medium


Base Score: 6.8

Temporal Score: 5

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:ibm:websphere_application_server

Required KB Items: www/WebSphere

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2013/08/19

Vulnerability Publication Date: 2012/05/23

Reference Information

CVE: CVE-2012-2098, CVE-2013-0169, CVE-2013-0597, CVE-2013-1768, CVE-2013-1862, CVE-2013-1896, CVE-2013-2967, CVE-2013-2976, CVE-2013-3029, CVE-2013-4004, CVE-2013-4005

BID: 53676, 57778, 59826, 60534, 60724, 61129, 61901, 61935, 61937, 61940, 61941

OSVDB: 82161, 89802, 89804, 89848, 89865, 93366, 94233, 94743, 94744, 94747, 94748, 95498, 96507, 96508

CWE: 20, 74, 79, 442, 629, 711, 712, 722, 725, 750, 751, 800, 801, 809, 811, 864, 900, 928, 931, 990