CVE-2013-0543

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server (WAS) versions 6.1 before 6.1.0.47 IBM WebSphere Application Server (WAS) versions 7.0 before 7.0.0.29 IBM WebSphere Application Server (WAS) versions 8.0 before 8.0.0.6 IBM WebSphere Application Server (WAS) versions 8.5 before 8.5.0.2

Description The issue arises from improper validation of user accounts when a Local OS registry is used. This allows remote attackers to bypass intended access restrictions.

Recommendations For versions 6.1 before 6.1.0.47, update to version 6.1.0.47 or later. For versions 7.0 before 7.0.0.29, update to version 7.0.0.29 or later. For versions 8.0 before 8.0.0.6, update to version 8.0.0.6 or later. For versions 8.5 before 8.5.0.2, update to version 8.5.0.2 or later.