Vulnerability Description
IBM WebSphere Application Server (WAS) 6.0.x through 6.0.2.43, 6.1.x before 6.1.0.37, and 7.0.x before 7.0.0.17 on z/OS, when a Local OS user registry or Federated Repository with RACF adapter is used, allows remote attackers to obtain unspecified application access via unknown vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Websphere Application Server | 6.0 |
| Ibm | Z\/Os | All versions |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/43965Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21473989
- http://www.ibm.com/support/docview.wss?uid=swg1PM35478
- http://www.ibm.com/support/docview.wss?uid=swg1PM35480
- http://www.ibm.com/support/docview.wss?uid=swg1PM35545
- http://www.ibm.com/support/docview.wss?uid=swg1PM35609
- http://www.ibm.com/support/docview.wss?uid=swg1PM35611
- http://www.securityfocus.com/bid/47122
- http://www.vupen.com/english/advisories/2011/0833Vendor Advisory
- http://secunia.com/advisories/43965Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg21473989
- http://www.ibm.com/support/docview.wss?uid=swg1PM35478
- http://www.ibm.com/support/docview.wss?uid=swg1PM35480
- http://www.ibm.com/support/docview.wss?uid=swg1PM35545
- http://www.ibm.com/support/docview.wss?uid=swg1PM35609
FAQ
What is CVE-2011-1683?
CVE-2011-1683 is a vulnerability with a CVSS score of 6.8 (MEDIUM). IBM WebSphere Application Server (WAS) 6.0.x through 6.0.2.43, 6.1.x before 6.1.0.37, and 7.0.x before 7.0.0.17 on z/OS, when a Local OS user registry or Federated Repository with RACF adapter is used...
How severe is CVE-2011-1683?
CVE-2011-1683 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-1683?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Websphere Application Server, Ibm Z\/Os.