IBM WebSphere Application Server Privilege Escalation Vulnerability (CVE-2015-1882)
IBM WebSphere Application Server Privilege Escalation Vulnerability (CVE-2015-1882)
Release date:
Updated on:
Affected Systems:
IBM Websphere Application Server <8.5.5.5
Description:
Bugtraq id: 74222
CVE (CAN) ID: CVE-2015-1882
WebSphere is an integrated software platform for IBM. It includes on-demand Web applications that write, run, and monitor around the clock industrial strength and the entire middleware infrastructure required for cross-platform and cross-product solutions.
IBM WebSphere Application Server (WAS) has multiple competitive condition security vulnerabilities. Remote attackers exploit thread conflicts to execute Java code and obtain elevated privileges on the system.
<* Source: IBM ([email protected])
*>
Suggestion:
Vendor patch:
IBM
---
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www-01.ibm.com/support/docview.wss? Uid = swg1PI33357
Http://www-01.ibm.com/support/docview.wss? Uid = swg21697368
This article permanently updates the link address: