CVE-2009-1172

NONECVSS 0.0

0.0

The JAX-RPC WS-Security runtime in the Web Services Security component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.23 and 7.0 before 7.0.0.3, when APAR PK41002 is installed, does not properly validate UsernameToken objects, which has unknown impact and attack vectors.

🔗 References (14)

cve@mitrehttp://secunia.com/advisories/34131
cve@mitrehttp://secunia.com/advisories/34461
cve@mitrehttp://www-01.ibm.com/support/docview.wss?uid=swg1PK75992
cve@mitrehttp://www-01.ibm.com/support/docview.wss?uid=swg21367223
cve@mitrehttp://www-01.ibm.com/support/docview.wss?uid=swg27007951
cve@mitrehttp://www-01.ibm.com/support/docview.wss?uid=swg27014463
cve@mitrehttp://www.securityfocus.com/bid/34502
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/34131
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/34461
af854a3a-2127-422b-91ae-364da2661108http://www-01.ibm.com/support/docview.wss?uid=swg1PK75992
af854a3a-2127-422b-91ae-364da2661108http://www-01.ibm.com/support/docview.wss?uid=swg21367223
af854a3a-2127-422b-91ae-364da2661108http://www-01.ibm.com/support/docview.wss?uid=swg27007951
af854a3a-2127-422b-91ae-364da2661108http://www-01.ibm.com/support/docview.wss?uid=swg27014463
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/34502

Is Your Infrastructure Affected by CVE-2009-1172?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-1172

📅 Published

🔄 Last Modified

🔗 References (14)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-1172?