Vulnerability Details CVE-2006-2342
IBM WebSphere Application Server 6.0.2 before FixPack 3 allows remote attackers to bypass authentication for the Welcome Page via a request to the default context root.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/20025
- http://www-1.ibm.com/support/docview.wss?uid=swg24010245
- http://www.osvdb.org/25368
- http://www.securityfocus.com/bid/17900
- http://www.vupen.com/english/advisories/2006/1724
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26312
- http://secunia.com/advisories/20025
- http://www-1.ibm.com/support/docview.wss?uid=swg24010245
- http://www.osvdb.org/25368
- http://www.securityfocus.com/bid/17900
- http://www.vupen.com/english/advisories/2006/1724
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26312
Products affected by CVE-2006-2342
-
cpe:2.3:a:ibm:websphere_application_server:6.0.2