Lucene search

MitreCVE-2011-0679

HistoryJan 28, 2011 - 9:00 p.m.

CVE-2011-0679

2011-01-2821:00:31

CWE-200

mitre

web.nvd.nist.gov

ibm

websphere portal

cve-2011-0679

vulnerability

nvd

ibm lotus

wcm

quickr

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.2

Confidence

Low

EPSS

0.005

Percentile

77.4%

JSON

IBM WebSphere Portal 6.0.1.1 through 7.0.0.0, as used in IBM Lotus Web Content Management (WCM) and IBM Lotus Quickr for WebSphere Portal, allows remote attackers to obtain sensitive information via a “modified message.”

Affected configurations

Nvd

Node

ibmwebsphere_portalMatch6.0.1.1

ibmwebsphere_portalMatch6.0.1.2

ibmwebsphere_portalMatch6.0.1.3

ibmwebsphere_portalMatch6.0.1.4

ibmwebsphere_portalMatch6.0.1.5

ibmwebsphere_portalMatch6.0.1.6

ibmwebsphere_portalMatch6.0.1.7

ibmwebsphere_portalMatch6.1.0.0

ibmwebsphere_portalMatch6.1.0.1

ibmwebsphere_portalMatch6.1.0.2

ibmwebsphere_portalMatch6.1.0.3

ibmwebsphere_portalMatch6.1.5.0

ibmwebsphere_portalMatch7.0.0.0

VendorProductVersionCPE
ibmwebsphere_portal6.0.1.1cpe:2.3:a:ibm:websphere_portal:6.0.1.1:*:*:*:*:*:*:*
ibmwebsphere_portal6.0.1.2cpe:2.3:a:ibm:websphere_portal:6.0.1.2:*:*:*:*:*:*:*
ibmwebsphere_portal6.0.1.3cpe:2.3:a:ibm:websphere_portal:6.0.1.3:*:*:*:*:*:*:*
ibmwebsphere_portal6.0.1.4cpe:2.3:a:ibm:websphere_portal:6.0.1.4:*:*:*:*:*:*:*
ibmwebsphere_portal6.0.1.5cpe:2.3:a:ibm:websphere_portal:6.0.1.5:*:*:*:*:*:*:*
ibmwebsphere_portal6.0.1.6cpe:2.3:a:ibm:websphere_portal:6.0.1.6:*:*:*:*:*:*:*
ibmwebsphere_portal6.0.1.7cpe:2.3:a:ibm:websphere_portal:6.0.1.7:*:*:*:*:*:*:*
ibmwebsphere_portal6.1.0.0cpe:2.3:a:ibm:websphere_portal:6.1.0.0:*:*:*:*:*:*:*
ibmwebsphere_portal6.1.0.1cpe:2.3:a:ibm:websphere_portal:6.1.0.1:*:*:*:*:*:*:*
ibmwebsphere_portal6.1.0.2cpe:2.3:a:ibm:websphere_portal:6.1.0.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	websphere_portal	6.0.1.1	cpe:2.3:a:ibm:websphere_portal:6.0.1.1:::::::*
ibm	websphere_portal	6.0.1.2	cpe:2.3:a:ibm:websphere_portal:6.0.1.2:::::::*
ibm	websphere_portal	6.0.1.3	cpe:2.3:a:ibm:websphere_portal:6.0.1.3:::::::*
ibm	websphere_portal	6.0.1.4	cpe:2.3:a:ibm:websphere_portal:6.0.1.4:::::::*
ibm	websphere_portal	6.0.1.5	cpe:2.3:a:ibm:websphere_portal:6.0.1.5:::::::*
ibm	websphere_portal	6.0.1.6	cpe:2.3:a:ibm:websphere_portal:6.0.1.6:::::::*
ibm	websphere_portal	6.0.1.7	cpe:2.3:a:ibm:websphere_portal:6.0.1.7:::::::*
ibm	websphere_portal	6.1.0.0	cpe:2.3:a:ibm:websphere_portal:6.1.0.0:::::::*
ibm	websphere_portal	6.1.0.1	cpe:2.3:a:ibm:websphere_portal:6.1.0.1:::::::*
ibm	websphere_portal	6.1.0.2	cpe:2.3:a:ibm:websphere_portal:6.1.0.2:::::::*

Rows per page:

1-10 of 131

References

osvdb.org/70688

secunia.com/advisories/43081

www-01.ibm.com/support/docview.wss?uid=swg1PM22159

www-01.ibm.com/support/docview.wss?uid=swg1PM22167

www-01.ibm.com/support/docview.wss?uid=swg1PM24319

www-01.ibm.com/support/docview.wss?uid=swg1PM24320

www-01.ibm.com/support/docview.wss?uid=swg1PM25191

www-01.ibm.com/support/docview.wss?uid=swg1PM25698

www-01.ibm.com/support/docview.wss?uid=swg1PM26397

www.ibm.com/support/docview.wss?uid=swg21460422

www.kb.cert.org/vuls/id/375127

www.securityfocus.com/bid/45989

www.vupen.com/english/advisories/2011/0223

exchange.xforce.ibmcloud.com/vulnerabilities/64890

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.2

Confidence

Low

EPSS

0.005

Percentile

77.4%

JSON

Related for CVE-2011-0679