Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-3305

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2012-3305
Last Modified 28 Jan 2013 12:00:00
Published 25 Sep 2012 04:55:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-3305

Summary

Directory traversal vulnerability in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47, 7.0 before 7.0.0.25, 8.0 before 8.0.0.5, and 8.5 before 8.5.0.1 allows remote attackers to overwrite arbitrary files via a crafted application file.

Vulnerable Systems

Application

  • Ibm Websphere Application Server 6.1

  • Ibm Websphere Application Server 6.1.0

  • Ibm Websphere Application Server 6.1.0.0

  • Ibm Websphere Application Server 6.1.0.1

  • Ibm Websphere Application Server 6.1.0.10

  • Ibm Websphere Application Server 6.1.0.11

  • Ibm Websphere Application Server 6.1.0.12

  • Ibm Websphere Application Server 6.1.0.13

  • Ibm Websphere Application Server 6.1.0.14

  • Ibm Websphere Application Server 6.1.0.15

  • Ibm Websphere Application Server 6.1.0.16

  • Ibm Websphere Application Server 6.1.0.17

  • Ibm Websphere Application Server 6.1.0.18

  • Ibm Websphere Application Server 6.1.0.19

  • Ibm Websphere Application Server 6.1.0.2

  • Ibm Websphere Application Server 6.1.0.20

  • Ibm Websphere Application Server 6.1.0.21

  • Ibm Websphere Application Server 6.1.0.22

  • Ibm Websphere Application Server 6.1.0.23

  • Ibm Websphere Application Server 6.1.0.24

  • Ibm Websphere Application Server 6.1.0.25

  • Ibm Websphere Application Server 6.1.0.26

  • Ibm Websphere Application Server 6.1.0.27

  • Ibm Websphere Application Server 6.1.0.28

  • Ibm Websphere Application Server 6.1.0.29

  • Ibm Websphere Application Server 6.1.0.3

  • Ibm Websphere Application Server 6.1.0.31

  • Ibm Websphere Application Server 6.1.0.32

  • Ibm Websphere Application Server 6.1.0.33

  • Ibm Websphere Application Server 6.1.0.34

  • Ibm Websphere Application Server 6.1.0.35

  • Ibm Websphere Application Server 6.1.0.36

  • Ibm Websphere Application Server 6.1.0.37

  • Ibm Websphere Application Server 6.1.0.38

  • Ibm Websphere Application Server 6.1.0.39

  • Ibm Websphere Application Server 6.1.0.4

  • Ibm Websphere Application Server 6.1.0.41

  • Ibm Websphere Application Server 6.1.0.42

  • Ibm Websphere Application Server 6.1.0.43

  • Ibm Websphere Application Server 6.1.0.44

  • Ibm Websphere Application Server 6.1.0.45

  • Ibm Websphere Application Server 6.1.0.46

  • Ibm Websphere Application Server 7.0

  • Ibm Websphere Application Server 7.0.0.1

  • Ibm Websphere Application Server 7.0.0.10

  • Ibm Websphere Application Server 7.0.0.11

  • Ibm Websphere Application Server 7.0.0.12

  • Ibm Websphere Application Server 7.0.0.13

  • Ibm Websphere Application Server 7.0.0.14

  • Ibm Websphere Application Server 7.0.0.15

  • Ibm Websphere Application Server 7.0.0.16

  • Ibm Websphere Application Server 7.0.0.17

  • Ibm Websphere Application Server 7.0.0.18

  • Ibm Websphere Application Server 7.0.0.19

  • Ibm Websphere Application Server 7.0.0.2

  • Ibm Websphere Application Server 7.0.0.21

  • Ibm Websphere Application Server 7.0.0.22

  • Ibm Websphere Application Server 7.0.0.23

  • Ibm Websphere Application Server 7.0.0.24

  • Ibm Websphere Application Server 8.0

  • Ibm Websphere Application Server 8.0.0.0

  • Ibm Websphere Application Server 8.0.0.1

  • Ibm Websphere Application Server 8.0.0.2

  • Ibm Websphere Application Server 8.0.0.3

  • Ibm Websphere Application Server 8.0.0.4

  • Ibm Websphere Application Server 8.5.0.0


References

XF - was-dir-traversal-overwrite(77477)

CONFIRM - http://www.ibm.com/support/docview.wss?uid=swg21611313

AIXAPAR - PM62467


Last Updated: 27 May 2016 11:00:48