IBM WebSphere Application Server (WAS) 6.0 prior to 6.0.2.41, 6.1 prior to 6.1.0.31, and 7.0 prior to 7.0.0.9 does not properly define wsadmin scripting J2CConnectionFactory objects, which allows local users to discover a KeyRingPassword password by reading a cleartext field in the resources.xml file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm websphere application server |
||
ibm websphere application server 6.0.2.27 |
||
ibm websphere application server 6.0.2.25 |
||
ibm websphere application server 6.0.2.9 |
||
ibm websphere application server 6.0.2.7 |
||
ibm websphere application server 6.0.0.2 |
||
ibm websphere application server 6.0.0.3 |
||
ibm websphere application server 6.0.2.31 |
||
ibm websphere application server 6.0.2.29 |
||
ibm websphere application server 6.0.2.13 |
||
ibm websphere application server 6.0.2.11 |
||
ibm websphere application server 6.0.1 |
||
ibm websphere application server 6.0.1.2 |
||
ibm websphere application server 6.0.2.37 |
||
ibm websphere application server 6.0.2.23 |
||
ibm websphere application server 6.0.2.21 |
||
ibm websphere application server 6.0.2.19 |
||
ibm websphere application server 6.0.2.5 |
||
ibm websphere application server 6.0.2.3 |
||
ibm websphere application server 6.0 |
||
ibm websphere application server 6.0.2.35 |
||
ibm websphere application server 6.0.2.33 |
||
ibm websphere application server 6.0.2.17 |
||
ibm websphere application server 6.0.2.15 |
||
ibm websphere application server 6.0.2.1 |
||
ibm websphere application server 6.0.2 |
||
ibm websphere application server 6.1.0.21 |
||
ibm websphere application server 6.1.0.19 |
||
ibm websphere application server 6.1.0.17 |
||
ibm websphere application server 6.1.0.3 |
||
ibm websphere application server 6.1.0.2 |
||
ibm websphere application server 6.1.0.25 |
||
ibm websphere application server 6.1.0.23 |
||
ibm websphere application server 6.1.0.7 |
||
ibm websphere application server 6.1.0.5 |
||
ibm websphere application server 6.1.0.15 |
||
ibm websphere application server 6.1.0.13 |
||
ibm websphere application server 6.1.0.1 |
||
ibm websphere application server 6.1.0 |
||
ibm websphere application server 6.1.0.27 |
||
ibm websphere application server 6.1.0.11 |
||
ibm websphere application server 6.1.0.9 |
||
ibm websphere application server 7.0.0.3 |
||
ibm websphere application server 7.0.0.1 |
||
ibm websphere application server 7.0.0.7 |
||
ibm websphere application server 7.0.0.5 |
||
ibm websphere application server 7.0 |