CVE-2008-0389

EUVD-2008-0399
Unspecified vulnerability in the serveServletsByClassnameEnabled feature in IBM WebSphere Application Server (WAS) 6.0 through 6.0.2.25, 6.1 through 6.1.0.14, and 5.1.1.x before 5.1.1.18 has unknown impact and attack vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 81%
Affected Products (NVD)
VendorProductVersion
ibmwebsphere_application_server
𝑥
≤ 5.1.1.17
ibmwebsphere_application_server
5.1.1
ibmwebsphere_application_server
5.1.1.1
ibmwebsphere_application_server
5.1.1.2
ibmwebsphere_application_server
5.1.1.3
ibmwebsphere_application_server
5.1.1.4
ibmwebsphere_application_server
5.1.1.5
ibmwebsphere_application_server
5.1.1.6
ibmwebsphere_application_server
5.1.1.7
ibmwebsphere_application_server
5.1.1.8
ibmwebsphere_application_server
5.1.1.9
ibmwebsphere_application_server
5.1.1.10
ibmwebsphere_application_server
5.1.1.12
ibmwebsphere_application_server
5.1.1.14
ibmwebsphere_application_server
5.1.1.15
ibmwebsphere_application_server
5.1.1.16
ibmwebsphere_application_server
6.0
ibmwebsphere_application_server
6.0.1
ibmwebsphere_application_server
6.0.2
ibmwebsphere_application_server
6.0.2
ibmwebsphere_application_server
6.0.2.1
ibmwebsphere_application_server
6.0.2.3
ibmwebsphere_application_server
6.0.2.5
ibmwebsphere_application_server
6.0.2.7
ibmwebsphere_application_server
6.0.2.9
ibmwebsphere_application_server
6.0.2.11
ibmwebsphere_application_server
6.0.2.13
ibmwebsphere_application_server
6.0.2.19
ibmwebsphere_application_server
6.0.2.22
ibmwebsphere_application_server
6.0.2.23
ibmwebsphere_application_server
6.0.2.24
ibmwebsphere_application_server
6.0.2.25
ibmwebsphere_application_server
6.1
ibmwebsphere_application_server
6.1.1
ibmwebsphere_application_server
6.1.3
ibmwebsphere_application_server
6.1.5
ibmwebsphere_application_server
6.1.6
ibmwebsphere_application_server
6.1.7
ibmwebsphere_application_server
6.1.13
ibmwebsphere_application_server
6.1.14
𝑥
= Vulnerable software versions
References
http://secunia.com/advisories/28576
http://secunia.com/advisories/29687
http://www-1.ibm.com/support/docview.wss?uid=swg24018067
http://www-1.ibm.com/support/docview.wss?uid=swg24018067
http://www-1.ibm.com/support/docview.wss?uid=swg27006879#51118
http://www.securityfocus.com/bid/27371
http://www.securitytracker.com/id?1019251
http://www.securitytracker.com/id?1019894
http://www.vupen.com/english/advisories/2008/0219
http://www.vupen.com/english/advisories/2008/1133
https://exchange.xforce.ibmcloud.com/vulnerabilities/39808
http://secunia.com/advisories/28576
http://secunia.com/advisories/29687
http://www-1.ibm.com/support/docview.wss?uid=swg24018067
http://www-1.ibm.com/support/docview.wss?uid=swg24018067
http://www-1.ibm.com/support/docview.wss?uid=swg27006879#51118
http://www.securityfocus.com/bid/27371
http://www.securitytracker.com/id?1019251
http://www.securitytracker.com/id?1019894
http://www.vupen.com/english/advisories/2008/0219
http://www.vupen.com/english/advisories/2008/1133
https://exchange.xforce.ibmcloud.com/vulnerabilities/39808