IBM Security Bulletin: Vulnerability in Apache Tomcat may affect IBM WebSphere Application Server Community Edition (CVE-2015-5174)
Apache Tomcat which is shipped with WebSphere Application Server Community Edition (WASCE) 3.0.0.4 is vulnerable to a remote attacker to traverse directories on the system.
CVE(s): CVE-2015-5174
Affected product(s) and affected version(s):
WebSphere Application Server Community Edition 3.0.0.4
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/20vynfy
X-Force Database: http://ift.tt/1rhWylT
from IBM Product Security Incident Response Team http://ift.tt/20vyasG