CVE-2009-0899
N/A
N/A
Summary
IBM WebSphere Application Server (WAS) 6.1 through 6.1.0.24 and 7.0 through 7.0.0.4, IBM WebSphere Portal Server 5.1 through 6.0, and IBM Integrated Solutions Console (ISC) 6.0.1 do not properly set the IsSecurityEnabled security flag during migration of WebSphere Member Manager (WMM) to Virtual Member Manager (VMM) and a Federated Repository, which allows attackers to obtain sensitive information from repositories via unspecified vectors.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/35406
- http://www-01.ibm.com/support/docview.wss?uid=swg21375859
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50882
- http://www-1.ibm.com/support/docview.wss?uid=swg1PK78134
References
- http://www.securityfocus.com/bid/35406
- http://www-01.ibm.com/support/docview.wss?uid=swg21375859
- https://exchange.xforce.ibmcloud.com/vulnerabilities/50882
- http://www-1.ibm.com/support/docview.wss?uid=swg1PK78134
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.