IBM WebSphere Portal 8.0.0 prior to 8.0.0.1 CF13 and 8.5.0 through CF01 provides different error codes for firewall-traversal requests depending on whether the intranet host exists, which allows remote malicious users to map the intranet network via a series of requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm websphere portal 8.0.0.0 |
||
ibm websphere portal 8.5.0.0 |