Vulnerabilities > CVE-2007-6679 - Remote Security vulnerability in Websphere Application Server
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Unspecified vulnerability in the Administrative Console in IBM WebSphere Application Server 6.1 before Fix Pack 13 has unknown impact and attack vectors, related to "security concerns with monitor role users." NOTE: it was later reported that 6.0.2 before Fix Pack 25 is also affected.
Vulnerable Configurations
Nessus
NASL family Web Servers NASL id WEBSPHERE_6_1_0_13.NASL description IBM WebSphere Application Server 6.1 before Fix Pack 13 appears to be running on the remote host. As such, it is reportedly affected by the following vulnerabilities : - Multiple cross-site request forgery vulnerabilities exist in last seen 2020-06-01 modified 2020-06-02 plugin id 45423 published 2010-04-05 reporter This script is Copyright (C) 2010-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/45423 title IBM WebSphere Application Server 6.1 < 6.1.0.13 Multiple Vulnerabilities code # # (C) Tenable Network Security, Inc. # include("compat.inc"); if (description) { script_id(45423); script_version("1.12"); script_cvs_date("Date: 2018/08/06 14:03:16"); script_cve_id("CVE-2007-5798", "CVE-2007-5799", "CVE-2007-6679"); script_bugtraq_id(26276); script_xref(name:"Secunia", value:"25704"); script_name(english:"IBM WebSphere Application Server 6.1 < 6.1.0.13 Multiple Vulnerabilities"); script_summary(english:"Reads the version number from the SOAP port"); script_set_attribute(attribute:"synopsis", value: "The remote application server is affected by multiple vulnerabilities."); script_set_attribute(attribute:"description", value: "IBM WebSphere Application Server 6.1 before Fix Pack 13 appears to be running on the remote host. As such, it is reportedly affected by the following vulnerabilities : - Multiple cross-site request forgery vulnerabilities exist in 'uddigui/navigateTree.do' in the UDDI user console. (PK50245) - An unspecified vulnerability exists in the Administrative Console. (PK45768)"); script_set_attribute(attribute:"see_also",value:"http://www-01.ibm.com/support/docview.wss?uid=swg21404665"); script_set_attribute(attribute:"see_also",value:"http://www-01.ibm.com/support/docview.wss?uid=swg27009778"); script_set_attribute(attribute:"see_also", value:"http://www-1.ibm.com/support/docview.wss?uid=swg27007951#61013"); script_set_attribute(attribute:"solution", value: "If using WebSphere Application Server, apply Fix Pack 13 (6.1.0.13) or later. Otherwise, if using embedded WebSphere Application Server packaged with Tivoli Directory Server, apply the latest recommended eWAS fix pack."); script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"exploit_available", value:"false"); script_cwe_id(79, 352); script_set_attribute(attribute:"vuln_publication_date", value:"2007/10/31"); script_set_attribute(attribute:"patch_publication_date", value:"2007/11/21"); script_set_attribute(attribute:"plugin_publication_date", value:"2010/04/05"); script_set_attribute(attribute:"plugin_type", value:"remote"); script_set_attribute(attribute:"cpe", value:"cpe:/a:ibm:websphere_application_server"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_family(english:"Web Servers"); script_copyright(english:"This script is Copyright (C) 2010-2018 Tenable Network Security, Inc."); script_dependencies("websphere_detect.nasl"); script_require_ports("Services/www", 8880, 8881); script_require_keys("www/WebSphere"); exit(0); } include("global_settings.inc"); include("misc_func.inc"); include("http.inc"); port = get_http_port(default:8880); version = get_kb_item("www/WebSphere/"+port+"/version"); if (isnull(version)) exit(1, "Failed to extract the version from the IBM WebSphere Application Server instance listening on port " + port + "."); if (version =~ "^[0-9]+(\.[0-9]+)?$") exit(1, "Failed to extract a granular version from the IBM WebSphere Application Server instance listening on port " + port + "."); ver = split(version, sep:'.', keep:FALSE); for (i=0; i<max_index(ver); i++) ver[i] = int(ver[i]); if (ver[0] == 6 && ver[1] == 1 && ver[2] == 0 && ver[3] < 13) { if (report_verbosity > 0) { source = get_kb_item_or_exit("www/WebSphere/"+port+"/source"); report = '\n Source : ' + source + '\n Installed version : ' + version + '\n Fixed version : 6.1.0.13' + '\n'; security_hole(port:port, extra:report); } else security_hole(port); exit(0); } else exit(0, "The WebSphere Application Server "+version+" instance listening on port "+port+" is not affected.");
NASL family Web Servers NASL id WEBSPHERE_6_0_2_25.NASL description IBM WebSphere Application Server 6.0.x before Fix Pack 25 appears to be running on the remote host. Such versions are reportedly affected by multiple vulnerabilities. - An unspecified vulnerability in the Administrative Console involving monitor role users. (PK45768) - WebSphere Application Server writes unspecified plaintext information to last seen 2020-06-01 modified 2020-06-02 plugin id 45419 published 2010-04-05 reporter This script is Copyright (C) 2010-2018 Tenable Network Security, Inc. source https://www.tenable.com/plugins/nessus/45419 title IBM WebSphere Application Server 6.0 < 6.0.2.25 Multiple Vulnerabilities
References
- http://secunia.com/advisories/28588
- http://securitytracker.com/id?1019174
- http://www.vupen.com/english/advisories/2007/3955
- http://www.vupen.com/english/advisories/2008/0241
- http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg27007951
- http://www-1.ibm.com/support/docview.wss?uid=swg27006876
- http://www-1.ibm.com/support/search.wss?rs=0&q=PK45768&apar=only