Skip to main content

Software  >  WebSphere  >  

Important security vulnerability notice
 Flash (Alert)
 
Abstract
Application-specific files that are contained in .war files can be displayed by an attacker.
 
Content
If the following conditions are true, your system is at risk by an attacker that displays application-specific files that are contained in .war files.
  • You run IBM WebSphere Application Server version 5.1, 6.0, 6.1, or 7.0.
  • You have Web-based applications that include Web services applications that run on WebSphere Application Server.

Because IBM WebSphere Process Server and WebSphere Enterprise Service Bus run on IBM WebSphere Application Server, the software versions of WebSphere Process Server and WebSphere Enterprise Service Bus that are listed on the right are also likely to be affected. If your system runs one or more of the versions on the list, see PK81387 for information that can help you identify the need for a fix and for links to the interim fixes.
 
 
Cross Reference information
Segment Product Component Platform Version Edition
Business IntegrationWebSphere Enterprise Service BusGeneralAIX, HP-UX, i5/OS, Linux, Solaris, Windows6.2, 6.1.2.2, 6.1.2.1, 6.1.2, 6.1.0.3, 6.1.0.2, 6.1.0.1, 6.1, 6.0.2.5, 6.0.2.4, 6.0.2.3, 6.0.2.2, 6.0.2.1, 6.0.2, 6.0.1.6, 6.0.1.5, 6.0.1.4, 6.0.1.3, 6.0.1.2, 6.0.1
 
 

Copyright and trademark information
IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml.
Rate this page
Please take a moment to complete this form to help us better serve you.
This material provides me with the information I need.




This material is clear and easy to understand.




Did the information help you to achieve your goal?
What updates, improvements, or related information would you like to see in this document?
Your response will be used to improve our document content. Requests for assistance, if applicable, should be submitted through your normal support channel as we cannot respond from this site.
Input the verification number to submit feedback:
Document information
 Product categories:
 Software
 Business Integration and Optimization
 Application Integration and Connectivity
 WebSphere Enterprise Service Bus
 General
 Operating system(s):
  AIX, HP-UX, Linux, Solaris, Windows, i5/OS
 Software version:
  6.0, 6.0.1, 6.0.1.1, 6.0.1.2, 6.0.1.3, 6.0.1.4, 6.0.1.5, 6.0.1.6, 6.0.2, 6.0.2.1, 6.0.2.2, 6.0.2.3, 6.0.2.4, 6.0.2.5, 6.1, 6.1.0.1, 6.1.0.2, 6.1.0.3, 6.1.2, 6.1.2.1, 6.1.2.2, 6.2
 Software edition:
  NA
 Reference #:
  1395739
 IBM Group:
 Software Group
 Modified date:
 2009-08-13

Translate My Page
 
 

Rate this page

Help us improve this page. Your response will be used to improve our document content. Requests for assistance, if applicable, should be submitted through your normal support channel as we cannot respond from this site.