Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6679

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2007-6679
Last Modified 07 Apr 2011 12:00:00
Published 09 Jan 2008 09:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6679

Summary

Unspecified vulnerability in the Administrative Console in IBM WebSphere Application Server 6.1 before Fix Pack 13 has unknown impact and attack vectors, related to "security concerns with monitor role users." NOTE: it was later reported that 6.0.2 before Fix Pack 25 is also affected.

Vulnerable Systems

Application

  • Ibm Websphere Application Server 6.0.2.24

  • Ibm Websphere Application Server 6.1

  • Ibm Websphere Application Server 6.1.0.1

  • Ibm Websphere Application Server 6.1.0.11

  • Ibm Websphere Application Server 6.1.0.2

  • Ibm Websphere Application Server 6.1.0.3

  • Ibm Websphere Application Server 6.1.0.5

  • Ibm Websphere Application Server 6.1.0.7

  • Ibm Websphere Application Server 6.1.0.9


References

VUPEN - ADV-2008-0241

VUPEN - ADV-2007-3955

AIXAPAR - PK45768

CONFIRM - http://www-1.ibm.com/support/docview.wss?uid=swg27006876

CONFIRM - http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg27007951

SECTRACK - 1019174

SECUNIA - 28588


Last Updated: 27 May 2016 10:46:36