Vulnerabilities > IBM > Websphere Application Server > 3.0.2.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-06-27 | CVE-2006-3231 | Multiple vulnerability in IBM Websphere Application Server Prior to 6.0.2.11 Unspecified vulnerability in IBM WebSphere Application Server (WAS) before 6.0.2.11, when fileServingEnabled is true, allows remote attackers to obtain JSP source code and other sensitive information via "URIs with special characters." network ibm | 4.3 |
2001-12-13 | CVE-2001-1189 | Unspecified vulnerability in IBM Websphere Application Server IBM Websphere Application Server 3.5.3 and earlier stores a password in cleartext in the sas.server.props file, which allows local users to obtain the passwords via a JSP script. | 4.6 |
2001-09-19 | CVE-2001-0962 | Unspecified vulnerability in IBM products IBM WebSphere Application Server 3.02 through 3.53 uses predictable session IDs for cookies, which allows remote attackers to gain privileges of WebSphere users via brute force guessing. | 7.5 |