Lucene search
PRIOn knowledge basePRION:CVE-2013-0482HistoryMay 29, 2013 - 2:29 p.m.
Design/Logic Flaw
2013-05-2914:29:00
PRIOn knowledge base
www.prio-n.com
4
IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.29, 8.0 before 8.0.0.6, and 8.5 through 8.5.0.2 and WebSphere Message Broker 6.1, 7.0 through 7.0.0.5, and 8.0 through 8.0.0.2, when WS-Security is used, allows remote attackers to spoof the signatures of messages via a crafted SOAP message, related to a “Signature Wrap attack,” a different vulnerability than CVE-2011-1377 and CVE-2013-0489.
References
www-01.ibm.com/support/docview.wss?uid=swg1IC88185
www-01.ibm.com/support/docview.wss?uid=swg1PM76582
www-01.ibm.com/support/docview.wss?uid=swg1PM86026
www-01.ibm.com/support/docview.wss?uid=swg21634646
www-01.ibm.com/support/docview.wss?uid=swg21635474
exchange.xforce.ibmcloud.com/vulnerabilities/81548
Related
cvelist
cvelist
nvd
nvd
cve
cve
prion
prion
Cross site request forgery (csrf)
2013-03-27 12:23:00
Code injection
2012-01-15 03:55:00
ibm
ibm
erpscan
erpscan
Lotus Domino Web Administrator - Cross Site Command Execution
2010-04-22 00:00:00
openvas
openvas
IBM WebSphere Application Server (WAS) Multiple Vulnerabilities (Jan 2012)
2012-01-18 00:00:00
IBM WebSphere Application Server (WAS) Multiple Vulnerabilities - (Jan2012)
2012-01-18 00:00:00
nessus
nessus
IBM WebSphere Application Server 8.0 < Fix Pack 2 Multiple Vulnerabilities
2012-04-04 00:00:00
IBM WebSphere Application Server 7.0 < Fix Pack 21 Multiple Vulnerabilities
2012-04-04 00:00:00
IBM WebSphere Application Server 8.0 < Fix Pack 3 Multiple Vulnerabilities
2012-06-14 00:00:00