The web container in IBM WebSphere Application Server (WAS) prior to 6.0.2.21, and 6.1.x prior to 6.1.0.9, sends response data intended for a different request in certain circumstances after a closed connection error, which might allow remote malicious users to obtain sensitive information.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
ibm websphere application server 6.0.2.19 |
||
ibm websphere application server 6.0.2.2 |
||
ibm websphere application server 6.1.0 |
||
ibm websphere application server 6.1.0.1 |
||
ibm websphere application server 6.0.2 |
||
ibm websphere application server 6.0.2.1 |
||
ibm websphere application server 6.0.2.3 |
||
ibm websphere application server 6.0.2.4 |
||
ibm websphere application server 6.1.0.2 |
||
ibm websphere application server 6.1.0.3 |
||
ibm websphere application server 6.1.0.5 |
||
ibm websphere application server 6.0.2.15 |
||
ibm websphere application server 6.0.2.17 |
||
ibm websphere application server 6.0.2.7 |
||
ibm websphere application server 6.0.2.9 |
||
ibm websphere application server 6.0.2.11 |
||
ibm websphere application server 6.0.2.13 |
||
ibm websphere application server 6.0.2.5 |
||
ibm websphere application server 6.0.2.6 |
||
ibm websphere application server 6.1.0.7 |
Vulmon