ID de Prueba:	1.3.6.1.4.1.25623.1.0.806839
Categoría:	Web Servers
Título:	IBM WebSphere Application Server Multiple Vulnerabilities (swg21644047)
Resumen:	IBM WebSphere Application Server is prone to multiple; vulnerabilities.
Descripción:	Summary: IBM WebSphere Application Server is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws are due to - An insufficient validation of input by administrative console. - The cross-site request forgery vulnerability in the Administrative console. Vulnerability Impact: Successful exploitation will allow remote attacker to hijack the authentication and to inject arbitrary web script or HTML via unspecified fields. Affected Software/OS: IBM WebSphere Application Server version 6.1.x prior to 6.1.0.47, 7.0.x prior to 7.0.0.31, 8.0.x prior to 8.0.0.7 and 8.5.x before 8.5.5.1. Solution: Update to version 6.1.0.47, 7.0.0.31, 8.0.0.7, 8.5.5.1 or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-3029 AIX APAR: PM88746 http://www-01.ibm.com/support/docview.wss?uid=swg1PM88746 XForce ISS Database: was-cve20133029-csrf(84591) https://exchange.xforce.ibmcloud.com/vulnerabilities/84591 Common Vulnerability Exposure (CVE) ID: CVE-2013-4005 AIX APAR: PM88208 http://www-01.ibm.com/support/docview.wss?uid=swg1PM88208 http://www.securitytracker.com/id/1028932 XForce ISS Database: was-cve20134005-xss(85270) https://exchange.xforce.ibmcloud.com/vulnerabilities/85270
Copyright	Copyright (C) 2016 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.