IBM Support

PI17190: Classloader Manipulation Vulnerability in IBM WebSphere Application Server CVE-2014-0114

Download


Abstract

Classloader Manipulation Vulnerability in IBM WebSphere Application Server CVE-2014-0114

Download Description

PI17190 resolves the following problem:

ERROR DESCRIPTION:
Classloader Manipulation Vulnerability in IBM WebSphere Application Server CVE-2014-0114

LOCAL FIX:
This is a WAS Administrative console issue. Clients are safe if they protect their admin console accesses with global security to limit access to trusted administrators. In addition, the admin console is safe if it's behind a firewall and the admin users don't attack it.

PROBLEM SUMMARY:
Classloader Manipulation Vulnerability in IBM WebSphere Application Server CVE-2014-0114

PROBLEM CONCLUSION:
Classloader Manipulation Vulnerability in IBM WebSphere Application Server CVE-2014-0114

On
[{"DNLabel":"Fix for 7.0.0.13 to 7.0.0.31","DNDate":"9 May 2014","DNLang":"English","DNSize":"70826","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm%7EWebSphere&product=ibm/WebSphere/WebSphere+Application+Server&release=All&platform=All&function=fixId&fixids=7.0.0.13-WS-WAS-IFPI17190","DNURL_FTP":" ","DDURL":" "},{"DNLabel":"Fix for 6.1.0.31 to 6.1.0.47","DNDate":"9 May 2014","DNLang":"English","DNSize":"70722","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm%7EWebSphere&product=ibm/WebSphere/WebSphere+Application+Server&release=All&platform=All&function=fixId&fixids=6.1.0.31-WS-WAS-IFPI17190","DNURL_FTP":" ","DDURL":" "},{"DNLabel":"Fix for 6.1.0.31 to 6.1.0.47 for Embedded","DNDate":"9 Jun 2014","DNLang":"English","DNSize":"70299","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm~WebSphere&product=ibm/WebSphere/WebSphere+Application+Server&release=All&platform=All&function=fixId&fixids=6.1.0.31-WS-WASEmbeded-IFPI17190","DNURL_FTP":" ","DDURL":" "},{"DNLabel":"Fix for 7.0.0.0 to 7.0.0.11","DNDate":"30 May 2014","DNLang":"English","DNSize":"70785","DNPlat":{"label":"AIX","code":"PF002"},"DNURL":"http://www-933.ibm.com/support/fixcentral/swg/selectFixes?parent=ibm~WebSphere&product=ibm/WebSphere/WebSphere+Application+Server&release=All&platform=All&function=fixId&fixids=7.0.0.0-WS-WAS-IFPI17190","DNURL_FTP":" ","DDURL":" "}]
[{"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"General","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF012","label":"IBM i"},{"code":"PF016","label":"Linux"},{"code":"PF014","label":"iOS"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"},{"code":"PF035","label":"z\/OS"}],"Version":"7.0.0.9;7.0.0.7;7.0.0.5;7.0.0.31;7.0.0.3;7.0.0.29;7.0.0.27;7.0.0.25;7.0.0.23;7.0.0.21;7.0.0.19;7.0.0.17;7.0.0.15;7.0.0.13;7.0.0.11;7.0.0.1;7.0;6.1.0.47;6.1.0.45;6.1.0.43;6.1.0.41;6.1.0.39;6.1.0.37;6.1.0.35;6.1.0.33;6.1.0.31","Edition":"Advanced;Base;Developer;Enterprise;Express;Network Deployment;Single Server","Line of Business":{"code":"LOB45","label":"Automation"}}]

Document Information

Modified date:
15 June 2018

UID

swg24037506