CVE-2011-1310

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server versions 6.1.0.x through 6.1.0.34 IBM WebSphere Application Server versions 7.x through 7.0.0.14

Description The issue allows local users to obtain potentially sensitive information by reading the wsadmin.traceout and trace.log files when tracing is enabled in the Administrative Scripting Tools component.

Recommendations For IBM WebSphere Application Server versions 6.1.0.x through 6.1.0.34, update to version 6.1.0.35 or later. For IBM WebSphere Application Server versions 7.x through 7.0.0.14, update to version 7.0.0.15 or later.