IBM WebSphere Service Registry and Repository 7.0 < 7.0.0 FP1 Authentication Bypass
Medium Nessus Plugin ID 70070
SynopsisThe remote host has a web application installed that is affected by an authentication bypass vulnerability.
DescriptionThe version of IBM WebSphere Service Registry and Repository is 7.0 earlier than Fix Pack 1. Such versions are potentially affected by a flaw in the implementation of access controls in the EJB interface. A remote, unauthenticated attacker could exploit this flaw in order to bypass access controls.
SolutionUpgrade to IBM WebSphere Service Registry and Repository 7.0.0 Fix Pack 1 or later.