kjkoster
30-01-2009, 21:43
Dear All,
WebSphere 6.0.2 33 fixes an issue that could allow attackers to view configuration files (http://www.securityfocus.com/bid/33533).
From the discussion on SecurityFocus I gather that the vulnerability is limited to z/OS. I'm not sure, though. As usual: do your own research.
Kees Jan
PS. Is that 33 part of the version number? Perhaps IBM is joining Oracle in a race to the longest product version number.
PPS. I love the dry exploit discussion: An attacker will likely use a browser to exploit this issue (http://www.securityfocus.com/bid/33533/exploit).
WebSphere 6.0.2 33 fixes an issue that could allow attackers to view configuration files (http://www.securityfocus.com/bid/33533).
From the discussion on SecurityFocus I gather that the vulnerability is limited to z/OS. I'm not sure, though. As usual: do your own research.
Kees Jan
PS. Is that 33 part of the version number? Perhaps IBM is joining Oracle in a race to the longest product version number.
PPS. I love the dry exploit discussion: An attacker will likely use a browser to exploit this issue (http://www.securityfocus.com/bid/33533/exploit).