CVE-2016-0385

Sažetak

Buffer overflow in IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.43, 8.0 before 8.0.0.13, 8.5 before 8.5.5.10, 9.0 before 9.0.0.1, and Liberty before 16.0.0.3, when HttpSessionIdReuse is enabled, allows remote authenticated users to obtain sensitive information via unspecified vectors.

Reference

http://www.securityfocus.com/bid/92505
http://www.securitytracker.com/id/1036654
http://www-01.ibm.com/support/docview.wss?uid=swg1PI60026
http://www-01.ibm.com/support/docview.wss?uid=swg21982588

CVSS

Base:	3.5
Impact:	2.9
Exploitability:	6.8

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:M/Au:S/C:P/I:N/A:N

Zadnje važnije ažuriranje

16-08-2017 - 01:29

Objavljeno

01-09-2016 - 10:59