PT-2010-2314 · Apache+1 · Tomcat Manager+1

Published

2010-02-05

Updated

2010-02-08

CVE-2010-0557

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions IBM Cognos Express version 9.0

Description The issue allows attackers to obtain unspecified access to the Tomcat Manager component and cause a denial of service by leveraging hardcoded credentials.

Recommendations For IBM Cognos Express version 9.0, update the credentials to prevent hardcoded access, and ensure proper configuration to avoid denial of service attacks.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-255

Related Identifiers

CVE-2010-0557

Affected Products

Ibm Cognos Express

Tomcat Manager

PT-2010-2314 · Apache+1 · Tomcat Manager+1

CVE-2010-0557

Weakness Enumeration

Related Identifiers

Affected Products

References · 10