Within the version of WebSphere Application Server provided with WebSphere Service Registry and Repository there is a possible security exposure when you use WS-Security, which can result in a user gaining elevated privileges.
This issue impacts applications that are using either JAX-WS or JAX-RPC.
For more information on this WebSphere Application Server issue, see Possible security exposure with WebSphere Application Server with WS-Security enabled applications using LTPA tokens (PM43585/PM43792/PM45181).
WebSphere Service Registry and Repository WSRR
Rate this page:
Copyright and trademark information
IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml.