[1/5] IBM WebSphere Application Server serveServletsByClassnameEnabled Information Disclosure

April 8th, 2008 by

[1/5] IBM WebSphere Application Server serveServletsByClassnameEnabled Information Disclosure

:A weakness has been reported in IBM WebSphere Application Server, which can be exploited by malicious people to disclose system information.The problem is caused due to an error related to "serveServletsByClassnameEnabled" and can be exploited to disclose certain information.This is related to:SA28576Solution:WebSphere Application Server 5.x:Apply Cumulative Fix 18 (5.1.1.18).Provided and/or discovered by:Reported by the vendor.Original Advisory:IBM (PK52059):http://www-1.ibm.com/support/docview.wss?uid=swg27006879Other References:SA28576:http://secunia.com/advisories/28576/

Original post by nitish

[1/5] IBM WebSphere Application Server serveServletsByClassnameEnabled Information Disclosure

Related Articles:

[3/5] IBM WebSphere Application Server serveServletsByClassnameEnabled Vulnerability

[2/5] WebSphere Application Server Community Edition WebDAV Content Disclosure

[1/5] WebSphere Application Server for z/OS HTTP Server Denial of Service

[2/5] IBM WebSphere Application Server for z/OS HTTP Server Vulnerability

[2/5] WebSphere Application Server Web Container Information Disclosure

Posted in Advisories - Exploits | | [1/5] IBM WebSphere Application Server serveServletsByClassnameEnabled Information Disclosure

<< [4/5] Aztech ADSL2/2+ Shell Command Injection | [3/5] Mole “viewsource.php” Information Disclosure Vulnerabilities >>

Cybertrion Systems

[1/5] IBM WebSphere Application Server serveServletsByClassnameEnabled Information Disclosure

Categories

Archives:

Search:

Meta: