5

CVE-2008-5411

IBM WebSphere Application Server (WAS) 7 before 7.0.0.1 sends SSL traffic over "unsecured TCP," which makes it easier for remote attackers to obtain sensitive information by sniffing the network.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
IbmWebsphere Application Server Version <= 7.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.44% 0.698
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/33022
Patch
Vendor Advisory
http://www-01.ibm.com/support/docview.wss?uid=swg27014463
Patch
http://www-1.ibm.com/support/docview.wss?uid=swg1PK74777
http://www.securityfocus.com/bid/32679
Patch
http://www.vupen.com/english/advisories/2008/3370
https://exchange.xforce.ibmcloud.com/vulnerabilities/47135