Home Unlabelled IBM Security Bulletin: Bypass security restrictions in WebSphere Application Server (CVE-2016-0385)

IBM Security Bulletin: Bypass security restrictions in WebSphere Application Server (CVE-2016-0385)

By
Wednesday, August 17, 2016
Read
Add Comment

There is a potential bypass security restriction vulnerability in IBM WebSphere Application Server. This will only occur in environments that have the webcontainer custom property HttpSessionIdReuse enabled.

CVE(s): CVE-2016-0385

Affected product(s) and affected version(s):

This vulnerability affects the following versions and releases of IBM WebSphere Application Server

  • Liberty
  • Version 9.0
  • Version 8.5.5
  • Version 8.5
  • Version 8.0
  • Version 7.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2bykQTe
X-Force Database: http://ift.tt/2bH5iQp



from IBM Product Security Incident Response Team http://ift.tt/2byllN4
Tags :

Created By Nexus · Powered by Blogger
© All Rights Reserved

Terms Of Service · Privacy Policy · Disclaimer · Contact Us · About Us