Vulnerabilities > CVE-2006-6136 - Multiple vulnerability in IBM Websphere Application Server 6.1.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
IBM WebSphere Application Server 6.1.0 before Fix Pack 3 (6.1.0.3) does not perform EAL4 authentication checks at the proper time during "registering of response operation," which has unknown impact and attack vectors.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- http://secunia.com/advisories/23028
- http://www.securityfocus.com/bid/21204
- http://www.vupen.com/english/advisories/2006/4639
- http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg24013830
- http://www-1.ibm.com/support/docview.wss?uid=swg27007951
- http://www-1.ibm.com/support/search.wss?rs=0&q=PK29847&apar=only