SecuritySpace - CVE-2012-2162

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2012-2162

Description: The Web Server Plug-in in IBM WebSphere Application Server (WAS) 8.0 and earlier uses unencrypted HTTP communication after expiration of the plugin-key.kdb password, which allows remote attackers to obtain sensitive information by sniffing the network, or spoof arbitrary servers via a man-in-the-middle attack.

Test IDs: 1.3.6.1.4.1.25623.1.0.802851

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2012-2162
XForce ISS Database: was-pluginkey-spoofing(74900)
https://exchange.xforce.ibmcloud.com/vulnerabilities/74900

CVE ID:	CVE-2012-2162
Description:	The Web Server Plug-in in IBM WebSphere Application Server (WAS) 8.0 and earlier uses unencrypted HTTP communication after expiration of the plugin-key.kdb password, which allows remote attackers to obtain sensitive information by sniffing the network, or spoof arbitrary servers via a man-in-the-middle attack.
Test IDs:	1.3.6.1.4.1.25623.1.0.802851
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2012-2162 XForce ISS Database: was-pluginkey-spoofing(74900) https://exchange.xforce.ibmcloud.com/vulnerabilities/74900