Possible security exposure with WS-Security enabled applications using LTPA tokens

Flash (Alert)


Abstract

Within the version of WebSphere Application Server provided with WebSphere Service Registry and Repository there is a possible security exposure when you use WS-Security, which can result in a user gaining elevated privileges.

Content

This issue impacts applications that are using either JAX-WS or JAX-RPC.

For more information on this WebSphere Application Server issue, see Possible security exposure with WebSphere Application Server with WS-Security enabled applications using LTPA tokens (PM43585/PM43792/PM45181).

Product Alias/Synonym

WebSphere Service Registry and Repository WSRR

Rate this page:

(0 users)Average rating

Add comments

Document information


More support for:

WebSphere Service Registry and Repository
Security

Software version:

6.2, 6.3, 7.0, 7.5

Operating system(s):

AIX, HP-UX, Linux, Solaris, Windows, z/OS

Reference #:

1605749

Modified date:

2012-07-20

Translate my page

Machine Translation

Content navigation