漏洞信息详情
IBM WebSphere Application Server Administrative Scripting Tools 未明攻击漏洞
漏洞简介
IBM WebSphere Application Server 5.x 和6.0.x版本的Administrative Scripting Tools (such as wsadmin or ANT)中存在未明漏洞。该漏洞具有未知影响和攻击向量。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
IBM Websphere Application Server 6.0.2.19
IBM 6.0.2.23: WebSphere Application Server V6.0.2 Fix Pack 23 for AIX platforms
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016326
IBM Websphere Application Server 5.1.1 .14
IBM 5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016174
IBM Websphere Application Server 5.1.1 .7
IBM 5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016174
IBM Websphere Application Server 5.1.1 .3
IBM 5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016174
IBM Websphere Application Server 5.1.1 .8
IBM 5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016174
IBM Websphere Application Server 5.1.1
IBM 5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016174
IBM Websphere Application Server 5.1.1 .10
IBM 5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016174
IBM Websphere Application Server 5.1.1 .4
IBM 5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016174
IBM Websphere Application Server 5.1.1 .9
IBM 5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016174
IBM Websphere Application Server 5.1.1 .1
IBM 5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016174
IBM Websphere Application Server 5.1.1 .15
IBM 5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016174
IBM Websphere Application Server 5.1.1 .5
IBM 5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016174
IBM Websphere Application Server 5.1.1 .12
IBM 5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016174
IBM Websphere Application Server 5.1.1 .2
IBM 5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016174
IBM Websphere Application Server 5.1.1 .6
IBM 5.1.1.16: WebSphere Application Server V5.1.1 Cumulative Fix 16 for AIX
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016174
IBM Websphere Application Server 6.0.2 .3
IBM 6.0.2.23: WebSphere Application Server V6.0.2 Fix Pack 23 for AIX platforms
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016326
IBM Websphere Application Server 6.0.2 .9
IBM 6.0.2.23: WebSphere Application Server V6.0.2 Fix Pack 23 for AIX platforms
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016326
IBM Websphere Application Server 6.0.2 .1
IBM 6.0.2.23: WebSphere Application Server V6.0.2 Fix Pack 23 for AIX platforms
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016326
IBM Websphere Application Server 6.0.2 .22
IBM 6.0.2.23: WebSphere Application Server V6.0.2 Fix Pack 23 for AIX platforms
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016326
IBM Websphere Application Server 6.0.2 .7
IBM 6.0.2.23: WebSphere Application Server V6.0.2 Fix Pack 23 for AIX platforms
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016326
IBM Websphere Application Server 6.0.2 .11
IBM 6.0.2.23: WebSphere Application Server V6.0.2 Fix Pack 23 for AIX platforms
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24016326
IBM Websphere Application Server 6.0.2 .13
IBM 6.0.2.23: WebSphere Application Server V6.0.2 Fix Pack 23 for AIX platforms
http://www-1.ibm.com/su
参考网址
来源: BID
名称: 26078
链接:http://www.securityfocus.com/bid/26078
来源: VUPEN
名称: ADV-2007-3506
链接:http://www.frsirt.com/english/advisories/2007/3506
来源: SECUNIA
名称: 27249
链接:http://secunia.com/advisories/27249
来源: XF
名称: websphere-administrative-unspecified(37203)
链接:http://xforce.iss.net/xforce/xfdb/37203
来源: SECTRACK
名称: 1018820
链接:http://www.securitytracker.com/id?1018820
来源: www-1.ibm.com
链接:http://www-1.ibm.com/support/docview.wss?uid=swg27006879#51116
来源: www-1.ibm.com
链接:http://www-1.ibm.com/support/docview.wss?uid=swg27006876#60223
受影响实体
- Ibm Websphere_application_server:6.0.2.15<!--2000-1-1-->
- Ibm Websphere_application_server:6.0.2.17<!--2000-1-1-->
- Ibm Websphere_application_server:6.0.2.13<!--2000-1-1-->
- Ibm Websphere_application_server:6.0.2.11<!--2000-1-1-->
- Ibm Websphere_application_server:6.0.2.1<!--2000-1-1-->
补丁
暂无
还没有评论,来说两句吧...