IBM Security Bulletin: Vulnerabilities in OpenSource Apache Tomcat affecting IBM Algo One Core ( CVE-2015-5345 CVE-2015-5346 )

Apache Tomcat could allow a remote attacker to obtain sensitive information, caused by an error when accessing a protected directory. By redirecting to the URL, an attacker could exploit this vulnerability to determine the presence of a directory affecting IBM Algo One Core.

CVE(s): CVE-2015-5345, CVE-2015-5346

Affected product(s) and affected version(s):

IBM Algo One Core 490 and Algo One Core 500

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/1X0xCN6
X-Force Database: http://ift.tt/1rhWy5x
X-Force Database: http://ift.tt/1NSj9zW



from IBM Product Security Incident Response Team http://ift.tt/1UhQvW0