漏洞信息详情
IBM WebSphere Application Server serveServletsByClassnameEnabled 未明漏洞
- CNNVD编号:CNNVD-200801-338
- 危害等级: 中危
- CVE编号: CVE-2008-0389
- 漏洞类型: 资料不足
- 发布时间: 2008-01-22
- 威胁类型: 远程
- 更新时间: 2009-06-17
- 厂 商: ibm
- 漏洞来源: The vendor disclos...
漏洞简介
IBM WebSphere Application Server(WAS)是 IBM WebSphere 软件平台的基础和面向服务的体系结构的关键构件。
IBM WebSphere Application Server (WAS) 6.0 至 6.0.2.25, 6.1 至 6.1.0.14, 以及5.1.1.18版本以前的5.1.1.x 中的未知漏洞具有未知影响和攻击向量。
漏洞公告
目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:
IBM Websphere Application Server 6.0
IBM 6.0.0.0-WS-WAS-IFPK52059.pak
ftp://ftp.software.ibm.com/software/Websphere/appserv/support/fixes/PK52059/6.0.0.0-WS-WAS-IFPK52059.pak
IBM Websphere Application Server 6.0.1
IBM 6.0.1.0-WS-WAS-IFPK52059.pak
ftp://ftp.software.ibm.com/software/Websphere/appserv/support/fixes/PK52059/6.0.1.0-WS-WAS-IFPK52059.pak
IBM Websphere Application Server 6.0.2 .25
IBM 6.0.2.25-WS-WAS-IFPK52059.pak
ftp://ftp.software.ibm.com/software/Websphere/appserv/support/fixes/PK52059/6.0.2.25-WS-WAS-IFPK52059.pak
IBM Websphere Application Server 6.0.2
IBM 6.0.2.0-WS-WAS-IFPK52059.pak
ftp://ftp.software.ibm.com/software/Websphere/appserv/support/fixes/PK52059/6.0.2.0-WS-WAS-IFPK52059.pak
IBM Websphere Application Server 6.0.2 .9
IBM 6.0.2.9-WS-WAS-IFPK52059.pak
ftp://ftp.software.ibm.com/software/Websphere/appserv/support/fixes/PK52059/6.0.2.9-WS-WAS-IFPK52059.pak
ftp://ftp.software.ibm.com/software/Websphere/appserv/support/fixes/PK
52059/6.0.2.9-WS-WAS-IFPK52059.pak
IBM Websphere Application Server 6.0.2 .5
IBM 6.0.2.5-WS-WAS-IFPK52059.pak
ftp://ftp.software.ibm.com/software/Websphere/appserv/support/fixes/PK52059/6.0.2.5-WS-WAS-IFPK52059.pak
IBM Websphere Application Server 6.1
IBM 6.1.0.0-WS-WAS-IFPK52059.pak
ftp://ftp.software.ibm.com/software/Websphere/appserv/support/fixes/PK52059/6.1.0.0-WS-WAS-IFPK52059.pak
参考网址
来源: BID
名称: 27371
链接:http://www.securityfocus.com/bid/27371
来源: AIXAPAR
名称: PK52059
链接:http://www-1.ibm.com/support/docview.wss?uid=swg24018067
来源: XF
名称: websphere-serveservlets-unspecified(39808)
链接:http://xforce.iss.net/xforce/xfdb/39808
来源: SECTRACK
名称: 1019894
链接:http://www.securitytracker.com/id?1019894
来源: SECTRACK
名称: 1019251
链接:http://www.securitytracker.com/id?1019251
来源: VUPEN
名称: ADV-2008-1133
链接:http://www.frsirt.com/english/advisories/2008/1133
来源: VUPEN
名称: ADV-2008-0219
链接:http://www.frsirt.com/english/advisories/2008/0219
来源: www-1.ibm.com
链接:http://www-1.ibm.com/support/docview.wss?uid=swg27006879#51118
来源: SECUNIA
名称: 29687
链接:http://secunia.com/advisories/29687
受影响实体
- Ibm Websphere_application_server:6.1.5
- Ibm Websphere_application_server:6.1.6
- Ibm Websphere_application_server:6.1.7
- Ibm Websphere_application_server:5.1.1.15
- Ibm Websphere_application_server:5.1.1.17
补丁
暂无
评论