Vulnerability Description
The Service Component Architecture (SCA) feature pack for IBM WebSphere Application Server (WAS) SCA 1.0 before 1.0.0.3 allows remote authenticated users to bypass intended authentication.transport access restrictions and obtain unspecified access via unknown vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Websphere Application Server | 1.0 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/36306Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg27015429Patch
- http://www-1.ibm.com/support/docview.wss?uid=swg1PK86047
- https://exchange.xforce.ibmcloud.com/vulnerabilities/52074
- http://secunia.com/advisories/36306Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg27015429Patch
- http://www-1.ibm.com/support/docview.wss?uid=swg1PK86047
- https://exchange.xforce.ibmcloud.com/vulnerabilities/52074
FAQ
What is CVE-2009-0906?
CVE-2009-0906 is a vulnerability with a CVSS score of 6.5 (MEDIUM). The Service Component Architecture (SCA) feature pack for IBM WebSphere Application Server (WAS) SCA 1.0 before 1.0.0.3 allows remote authenticated users to bypass intended authentication.transport ac...
How severe is CVE-2009-0906?
CVE-2009-0906 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-0906?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Websphere Application Server.