IBM Support

PI99402:Potential spoofing vulnerabilty in IBM WebSphere Application Server installations using Form Login

Download


Abstract

IBM WebSphere Application Server installations using Form Login could allow a remote attacker to conducts spoofing attacks.

Download Description

PI99402 resolves the following problem:

ERROR DESCRIPTION: IBM WebSphere Application Server installations using Form Login could allow a remote attacker to conducts spoofing attacks.

LOCAL FIX: None

PROBLEM SUMMARY: IBM WebSphere Application Server installations using Form Login could allow a remote attacker to conducts spoofing attacks.

PROBLEM CONCLUSION: Code has been changed to prevent this vulnerability.

Prerequisites

Please download the UpdateInstaller below to install this fix.

URL SIZE(Bytes)
UpdateInstaller 7250000

Installation Instructions

Please review the readme.txt for detailed installation instructions.

URL SIZE(Bytes)
V85 Readme 2549
V80 Readme 2464
V70 Readme 5151

Download Package

DOWNLOAD RELEASE DATE SIZE(Bytes)

DOWNLOAD Options

What is Fix Central(FC)?

8.0.0.15-WS-WAS-IFPI99402 09-04-2018 266031 FC
8.5.5.10-WS-WAS-IFPI99402 09-04-2018 272602 FC
7.0.0.45-WS-WAS-IFPI99402 09-04-2018 17636 FC

Problems Solved

PI99402

Technical Support

Contact IBM Support using SR (http://www.ibm.com/software/support/probsub.html), visit the support web site, or contact 1-800-IBM-SERV (U.S. only).

Problems (APARS) fixed
PI99402

Document information

More support for: WebSphere Application Server

Software version: 7.0.0.45, 8.0.0.15, 8.5.5.10, 8.5.5.11, 8.5.5.12, 8.5.5.13, 8.5.5.14

Operating system(s): AIX, HP-UX, IBM i, Inspur K-UX, Linux, Solaris, Windows, z/OS

Software edition: Advanced,Base,Developer,Enterprise,Network Deployment,Single Server,WebSphere Business Integration S

Reference #: 0730291

Modified date: 04 September 2018


Translate this page: