IBM Support

Possible security exposure with WebSphere Application Server with WS-Security enabled applications using LTPA tokens (PM43585/PM43792/PM45181)

Flash (Alert)


Abstract

There is a possible security exposure when using WS-Security resulting in a user gaining elevated privileges. This impacts applications using either JAX-WS and JAX-RPC.

Content

For details about this security exposure, see the link under Related information.

Related information

WebSphere Application Server flash

Document information

More support for: WebSphere Sensor Events

Software version: 6.2, 7.0

Operating system(s): AIX, Linux, Windows

Reference #: 1601278

Modified date: 2012-07-18