IBM WebSphere Application Server 7.0 < 126.96.36.199 / 8.0 < 188.8.131.52 / 8.5 < 184.108.40.206 / 9.0 < 220.127.116.11 Multiple Vulnerabilities
Medium Nessus Plugin ID 94512
SynopsisThe remote web application server is affected by multiple vulnerabilities.
DescriptionThe IBM WebSphere Application Server running on the remote host is version 7.0 prior to 18.104.22.168, 8.0 prior to 22.214.171.124, 8.5 prior to 126.96.36.199, or 9.0 prior to 188.8.131.52. It is, therefore, affected by multiple vulnerabilities :
- A remote code execution vulnerability exists due to improper sanitization user-supplied input when deserializing Java objects. An authenticated, remote attacker can exploit this, via a crafted serialized object, to execute arbitrary Java code. (CVE-2016-5983)
- An information disclosure vulnerability exists due to improper handling of responses. An unauthenticated, remote attacker can exploit this to disclose sensitive server identification information. (CVE-2016-5986)
SolutionApply IBM WebSphere Application Server version 7.0 Fix Pack 43 (184.108.40.206) / 8.0 Fix Pack 13 (220.127.116.11) / 8.5 Fix Pack 11 (18.104.22.168) / 9.0 Fix Pack 2 (22.214.171.124) or later. Alternatively, apply Interim Fixes PI67093 and PI70737.