Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ibm websphere application server 6.1.0.39 vulnerabilities and exploits

(subscribe to this query)
187
VMScore
CVE-2011-1356
IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.39 and 7.0 prior to 7.0.0.19 allows local users to obtain sensitive stack-trace information via a crafted Administration Console request.
Ibm Websphere Application Server 6.1.0.29Ibm Websphere Application Server 6.1.0.2Ibm Websphere Application Server 6.1.0.3Ibm Websphere Application Server 6.1.0Ibm Websphere Application Server 6.1.0.27Ibm Websphere Application Server 6.1.7Ibm Websphere Application Server 6.1.6Ibm Websphere Application Server 6.1.13Ibm Websphere Application Server 6.1.0.19Ibm Websphere Application Server 6.1.0.15Ibm Websphere Application Server 6.1.0.5Ibm Websphere Application Server 6.1.0.9Ibm Websphere Application Server 6.1.0.12Ibm Websphere Application Server 6.1.5Ibm Websphere Application Server 6.1.3Ibm Websphere Application Server 6.1.0.21Ibm Websphere Application Server 6.1.0.23Ibm Websphere Application Server 6.1.0.1Ibm Websphere Application Server 6.1.0.0Ibm Websphere Application Server 6.1.0.25Ibm Websphere Application Server 6.1.14Ibm Websphere Application Server 6.1.1
516
VMScore
CVE-2011-1355
Open redirect vulnerability in IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.39 and 7.0 prior to 7.0.0.19 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage parameter.
Ibm Websphere Application Server 6.1.0.33Ibm Websphere Application Server 6.1.0.31Ibm Websphere Application Server 6.1.0.7Ibm Websphere Application Server 6.1.0.17Ibm Websphere Application Server 6.1.0.11Ibm Websphere Application Server 6.1Ibm Websphere Application Server 6.1.0.35Ibm Websphere Application Server 6.1.0.37Ibm Websphere Application Server 6.1.0.21Ibm Websphere Application Server 6.1.0.23Ibm Websphere Application Server 6.1.0.0Ibm Websphere Application Server 6.1.0.25Ibm Websphere Application Server 6.1.14Ibm Websphere Application Server 6.1.1Ibm Websphere Application Server 6.1.13Ibm Websphere Application Server 6.1.0.19Ibm Websphere Application Server 6.1.0.15Ibm Websphere Application Server 6.1.0.5Ibm Websphere Application Server 6.1.0.9Ibm Websphere Application Server 6.1.0.12Ibm Websphere Application Server 6.1.5Ibm Websphere Application Server 6.1.3
383
VMScore
CVE-2011-1209
IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.39 and 7.0 prior to 7.0.0.17 uses a weak WS-Security XML encryption algorithm, which makes it easier for remote malicious users to obtain plaintext data from a (1) JAX-RPC or (2) JAX-WS Web Services request via unspecified...
Ibm Websphere Application Server 6.1.0.1Ibm Websphere Application Server 6.1.0.7Ibm Websphere Application Server 6.1.7Ibm Websphere Application Server 6.1.5Ibm Websphere Application Server 6.1.1Ibm Websphere Application Server 6.1.0.19Ibm Websphere Application Server 6.1.0.37Ibm Websphere Application Server 6.1.0.5Ibm Websphere Application Server 6.1.0.15Ibm Websphere Application Server 6.1.0.0Ibm Websphere Application Server 6.1.0.11Ibm Websphere Application Server 6.1.0.32Ibm Websphere Application Server 6.1.0.3Ibm Websphere Application Server 6.1.0.33Ibm Websphere Application Server 6.1.0.24Ibm Websphere Application Server 6.1.0.22Ibm Websphere Application Server 6.1.0.23Ibm Websphere Application Server 6.1.0.2Ibm Websphere Application Server 6.1.0.25Ibm Websphere Application Server 6.1.0Ibm Websphere Application Server 6.1.0.12Ibm Websphere Application Server 6.1.0.9
383
VMScore
CVE-2013-0596
Cross-site scripting (XSS) vulnerability in the Administrative console in IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.47 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Websphere Application Server 6.1.0.37Ibm Websphere Application Server 6.1.0.35Ibm Websphere Application Server 6.1.0.21Ibm Websphere Application Server 6.1.0.2Ibm Websphere Application Server 6.1.0.11Ibm Websphere Application Server 6.1.0.1Ibm Websphere Application Server 6.1.0.45Ibm Websphere Application Server 6.1.0.43Ibm Websphere Application Server 6.1.0.3Ibm Websphere Application Server 6.1.0.29Ibm Websphere Application Server 6.1.0.27Ibm Websphere Application Server 6.1.0.15Ibm Websphere Application Server 6.1.0.14Ibm Websphere Application Server 6.1.0.5Ibm Websphere Application Server 6.1.0.7Ibm Websphere Application Server 6.1.0.41Ibm Websphere Application Server 6.1.0.39Ibm Websphere Application Server 6.1.0.25Ibm Websphere Application Server 6.1.0.23Ibm Websphere Application Server 6.1.0.13Ibm Websphere Application Server 6.1.0.12Ibm Websphere Application Server 6.1.0.9
890
VMScore
CVE-2011-1377
The Web Services Security component in the Web Services Feature Pack prior to 6.1.0.41 for IBM WebSphere Application Server (WAS) 6.1 does not properly handle the enabling of WS-Security for a JAX-WS application, which has unspecified impact and attack vectors.
Ibm Websphere Application Server 6.1.0.21Ibm Websphere Application Server 6.1.0.23Ibm Websphere Application Server 6.1.0.17Ibm Websphere Application Server 6.1.0.0Ibm Websphere Application Server 6.1.0.27Ibm Websphere Application Server 6.1.14Ibm Websphere Application Server 6.1.1Ibm Websphere Application Server 6.1.0.39Ibm Websphere Application Server 6.1.0.29Ibm Websphere Application Server 6.1.0.19Ibm Websphere Application Server 6.1.0.3Ibm Websphere Application Server 6.1.0.5Ibm Websphere Application Server 6.1.0.9Ibm Websphere Application Server 6.1.0.12Ibm Websphere Application Server 6.1.5Ibm Websphere Application Server 6.1.3Ibm Websphere Application Server 6.1.0.33Ibm Websphere Application Server 6.1.0.31Ibm Websphere Application Server 6.1.0.15Ibm Websphere Application Server 6.1.0.7Ibm Websphere Application Server 6.1.0.11Ibm Websphere Application Server 6.1
187
VMScore
CVE-2011-5066
The SibRaRecoverableSiXaResource class in the Default Messaging Component in IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.41 does not properly handle a Service Integration Bus (SIB) dump operation involving the First Failure Data Capture (FFDC) introspection code, wh...
Ibm Websphere Application Server 6.1.13Ibm Websphere Application Server 6.1.0.1Ibm Websphere Application Server 6.1.0.3Ibm Websphere Application Server 6.1.0.0Ibm Websphere Application Server 6.1.0.25Ibm Websphere Application Server 6.1.0.9Ibm Websphere Application Server 6.1.1Ibm Websphere Application Server 6.1.6Ibm Websphere Application Server 6.1.0.19Ibm Websphere Application Server 6.1.0.33Ibm Websphere Application Server 6.1.0.31Ibm Websphere Application Server 6.1.0.21Ibm Websphere Application Server 6.1.0.12Ibm Websphere Application Server 6.1.0.11Ibm Websphere Application Server 6.1Ibm Websphere Application Server 6.1.14Ibm Websphere Application Server 6.1.0.29Ibm Websphere Application Server 6.1.0.23Ibm Websphere Application Server 6.1.0.2Ibm Websphere Application Server 6.1.0.27Ibm Websphere Application Server 6.1.0Ibm Websphere Application Server 6.1.7
383
VMScore
CVE-2011-5065
Cross-site scripting (XSS) vulnerability in IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.41 allows remote malicious users to inject arbitrary web script or HTML via vectors related to web messaging.
Ibm Websphere Application Server 6.1.0.31Ibm Websphere Application Server 6.1.0.21Ibm Websphere Application Server 6.1.0.23Ibm Websphere Application Server 6.1.0.17Ibm Websphere Application Server 6.1.0.0Ibm Websphere Application Server 6.1Ibm Websphere Application Server 6.1.14Ibm Websphere Application Server 6.1.0.37Ibm Websphere Application Server 6.1.0.39Ibm Websphere Application Server 6.1.0.1Ibm Websphere Application Server 6.1.0.2Ibm Websphere Application Server 6.1.0.27Ibm Websphere Application Server 6.1.0.25Ibm Websphere Application Server 6.1.1Ibm Websphere Application Server 6.1.7Ibm Websphere Application Server 6.1.13Ibm Websphere Application Server 6.1.0.29Ibm Websphere Application Server 6.1.0.3Ibm Websphere Application Server 6.1.0.5Ibm Websphere Application Server 6.1.0Ibm Websphere Application Server 6.1.0.9Ibm Websphere Application Server 6.1.6
409
VMScore
CVE-2011-1376
iscdeploy in IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.43, 7.0 prior to 7.0.0.21, and 8.0 prior to 8.0.0.2 on the IBM i platform sets weak permissions under systemapps/isclite.ear/ and bin/client_ffdc/, which allows local users to read or modify files via standard...
Ibm Websphere Application Server 6.1Ibm Websphere Application Server 6.1.0.1Ibm Websphere Application Server 6.1.0.3Ibm Websphere Application Server 6.1.0.5Ibm Websphere Application Server 6.1.0.21Ibm Websphere Application Server 6.1.0.23Ibm Websphere Application Server 6.1.0.37Ibm Websphere Application Server 6.1.0.39Ibm Websphere Application Server 6.1.0.7Ibm Websphere Application Server 6.1.0.9Ibm Websphere Application Server 6.1.0.25Ibm Websphere Application Server 6.1.0.27Ibm Websphere Application Server 6.1.0.41Ibm Websphere Application Server 6.1.0.11Ibm Websphere Application Server 6.1.0.13Ibm Websphere Application Server 6.1.0.29Ibm Websphere Application Server 6.1.0.31Ibm Websphere Application Server 6.1.0.15Ibm Websphere Application Server 6.1.0.17Ibm Websphere Application Server 6.1.0.19Ibm Websphere Application Server 6.1.0.33Ibm Websphere Application Server 6.1.0.35
605
VMScore
CVE-2013-0460
Cross-site request forgery (CSRF) vulnerability in the portlet subsystem in the administrative console in IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.47 and 7.0 prior to 7.0.0.27 allows remote malicious users to hijack the authentication of arbitrary users for reque...
Ibm Websphere Application Server 6.1.0.2Ibm Websphere Application Server 6.1.0.3Ibm Websphere Application Server 6.1.0.15Ibm Websphere Application Server 6.1.0.17Ibm Websphere Application Server 6.1.0.35Ibm Websphere Application Server 6.1.0.37Ibm Websphere Application Server 6.1.0.0Ibm Websphere Application Server 6.1.0.1Ibm Websphere Application Server 6.1.0.12Ibm Websphere Application Server 6.1.0.13Ibm Websphere Application Server 6.1.0.14Ibm Websphere Application Server 6.1.0.27Ibm Websphere Application Server 6.1.0.33Ibm Websphere Application Server 6.1.0.5Ibm Websphere Application Server 6.1.0.7Ibm Websphere Application Server 6.1.0.19Ibm Websphere Application Server 6.1.0.21Ibm Websphere Application Server 6.1.0.39Ibm Websphere Application Server 6.1.0.41Ibm Websphere Application Server 6.1.0.29Ibm Websphere Application Server 6.1.0.31Ibm Websphere Application Server 6.1.0.9
445
VMScore
CVE-2011-1359
Directory traversal vulnerability in the administration console in IBM WebSphere Application Server (WAS) 6.1 prior to 6.1.0.41, 7.0 prior to 7.0.0.19, and 8.0 prior to 8.0.0.1 allows remote malicious users to read arbitrary files via a .. (dot dot) in the URI.
Ibm Websphere Application Server 6.1.0.29Ibm Websphere Application Server 6.1.13Ibm Websphere Application Server 6.1.0.2Ibm Websphere Application Server 6.1.0.3Ibm Websphere Application Server 6.1.0.31Ibm Websphere Application Server 6.1.0.21Ibm Websphere Application Server 6.1.0.7Ibm Websphere Application Server 6.1.0.17Ibm Websphere Application Server 6.1Ibm Websphere Application Server 6.1.14Ibm Websphere Application Server 6.1.0.37Ibm Websphere Application Server 6.1.0.39Ibm Websphere Application Server 6.1.0.19Ibm Websphere Application Server 6.1.0.33Ibm Websphere Application Server 6.1.0.15Ibm Websphere Application Server 6.1.0.5Ibm Websphere Application Server 6.1.0.12Ibm Websphere Application Server 6.1.0.11Ibm Websphere Application Server 6.1.3Ibm Websphere Application Server 6.1.0.35Ibm Websphere Application Server 6.1.0Ibm Websphere Application Server 6.1.0.27
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook