CVE-2009-0904

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server versions 6.1 through 6.1.0.24

Description The issue is related to the improper processing of XML encoding by the IBM Stax XMLStreamWriter in the Web Services component. This allows remote attackers to bypass intended access restrictions and possibly modify data via XML fuzzing attacks sent through SOAP requests.

Recommendations For IBM WebSphere Application Server versions 6.1 through 6.1.0.24, update to version 6.1.0.25 or later to resolve the issue.