CVE-2010-1650

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server (WAS) versions 6.0.x through 6.0.2.40 IBM WebSphere Application Server (WAS) versions 6.1.x through 6.1.0.30 IBM WebSphere Application Server (WAS) versions 7.0.x through 7.0.0.10

Description The issue allows attackers to obtain sensitive information by reading the trace output when the -trace option, also known as debugging mode, is enabled. This occurs because the application executes debugging statements that print string representations of unspecified objects.

Recommendations For IBM WebSphere Application Server (WAS) versions 6.0.x through 6.0.2.40, update to version 6.0.2.41 or later. For IBM WebSphere Application Server (WAS) versions 6.1.x through 6.1.0.30, update to version 6.1.0.31 or later. For IBM WebSphere Application Server (WAS) versions 7.0.x through 7.0.0.10, update to version 7.0.0.11 or later.