Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3236

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-3236
Last Modified 07 Mar 2011 10:10:26
Published 21 Jul 2008 12:41:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-3236

Summary

Unspecified vulnerability in Wsadmin in the System Management/Repository component in IBM WebSphere Application Server (WAS) 5.1 before 5.1.1.19 allows attackers to obtain sensitive information via vectors related to "previously encrypted properties" that are not encrypted.

Vulnerable Systems

Application

  • Ibm Websphere Application Server 5.1.0

  • Ibm Websphere Application Server 5.1.1

  • Ibm Websphere Application Server 5.1.1.1

  • Ibm Websphere Application Server 5.1.1.10

  • Ibm Websphere Application Server 5.1.1.11

  • Ibm Websphere Application Server 5.1.1.12

  • Ibm Websphere Application Server 5.1.1.13

  • Ibm Websphere Application Server 5.1.1.14

  • Ibm Websphere Application Server 5.1.1.15

  • Ibm Websphere Application Server 5.1.1.16

  • Ibm Websphere Application Server 5.1.1.17

  • Ibm Websphere Application Server 5.1.1.18

  • Ibm Websphere Application Server 5.1.1.2

  • Ibm Websphere Application Server 5.1.1.3

  • Ibm Websphere Application Server 5.1.1.4

  • Ibm Websphere Application Server 5.1.1.5

  • Ibm Websphere Application Server 5.1.1.6

  • Ibm Websphere Application Server 5.1.1.7

  • Ibm Websphere Application Server 5.1.1.8

  • Ibm Websphere Application Server 5.1.1.9


References

XF - websphere-wsadmin-information-disclosure(45123)

VUPEN - ADV-2008-2566

VUPEN - ADV-2008-2140

CONFIRM - http://www-1.ibm.com/support/docview.wss?uid=swg27006879

CONFIRM - http://www-01.ibm.com/support/docview.wss?uid=swg27007951

SECUNIA - 31892

SECUNIA - 31149


Last Updated: 27 May 2016 10:48:07