CVE-2009-0506

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server versions 5.1 and 6.0.2 before 6.0.2.33

Description The issue affects IBM WebSphere Application Server when CSIv2 Identity Assertion is enabled and there is Enterprise JavaBeans interaction between different versions of the server. It allows local users to have an unknown impact through vectors related to the use of the wrong subject and multiple CBIND checks.

Recommendations For IBM WebSphere Application Server versions 5.1 and 6.0.2 before 6.0.2.33, update to version 6.0.2.33 or later to resolve the issue.