PT-2009-4547 · Ibm · Ibm Websphere Commerce
Published
2009-08-13
·
Updated
2017-08-17
·
CVE-2009-2094
CVSS v2.0
1.5
Low
| Vector | AV:L/AC:M/Au:S/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
IBM WebSphere Commerce version 6.0 before 6.0.0.8
Description
The issue allows local users to obtain sensitive information when trace is enabled, although the exact vectors used for this are not specified.
Recommendations
For IBM WebSphere Commerce version 6.0 before 6.0.0.8, update to version 6.0.0.8 or later to resolve the issue. As a temporary workaround, consider disabling the trace functionality until a patch is available.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ibm Websphere Commerce