CVE-2006-7166

Опубликовано: 20 мар. 2007

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

IBM WebSphere Application Server (WAS) 5.1.1.9 and earlier allows remote attackers to obtain JSP source code and other sensitive information via "a specific JSP URL."

Ссылки

http://secunia.com/advisories/24478
Patch
Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg21243541
Patch
Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg24011720
Vendor Advisory
http://www.securityfocus.com/bid/22991
http://www.vupen.com/english/advisories/2007/0970
http://secunia.com/advisories/24478
Patch
Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg21243541
Patch
Vendor Advisory
http://www-1.ibm.com/support/docview.wss?uid=swg24011720
Vendor Advisory
http://www.securityfocus.com/bid/22991
http://www.vupen.com/english/advisories/2007/0970

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:ibm:websphere_application_server:5.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.2:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.3:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.4:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.5:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.6:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.7:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.8:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.9:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.10:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.11:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.12:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.13:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.14:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.15:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.0.2.16:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.0.2:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.0.3:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.0.4:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.0.5:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.1.2:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.1.3:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.1.4:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.1.5:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.1.6:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.1.7:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.1.8:*:*:*:*:*:*:*

cpe:2.3:a:ibm:websphere_application_server:5.1.1.9:*:*:*:*:*:*:*

EPSS

Процентиль: 60%

0.004

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-w3x5-qj6j-cxcw

github

почти 4 года назад