Vulnerabilities > CVE-2006-6537 - Security Bypass vulnerability in Websphere Host On-Demand
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
IBM WebSphere Host On-Demand 6.0, 7.0, 8.0, 9.0, and possibly 10, allows remote attackers to bypass authentication via a modified pnl parameter, related to hod/HODAdmin.html and hod/frameset.html.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |