#VU42218 Permissions, Privileges, and Access Controls in WebSphere Portal - CVE-2013-6735
Vulnerability identifier: #VU42218
Vulnerability risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID:
CWE-ID:
CWE-264
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
WebSphere Portal
Server applications /
Application servers
Vendor: IBM Corporation
Description
The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.
IBM WebSphere Portal 6.0.0.x through 6.0.0.1, 6.0.1.x through 6.0.1.7, 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.0.0.x through 7.0.0.2 CF26, and 8.0.0.x through 8.0.0.1 CF08 allows remote attackers to obtain sensitive Java Content Repository (JCR) information via a modified Web Content Manager (WCM) URL.
Mitigation
Install update from vendor's website.
Vulnerable software versions
WebSphere Portal: 6.0.0.0 - 8.0.0.1
External links
https://osvdb.org/101255
https://packetstormsecurity.com/files/124611/IBM-Web-Content-Manager-XPath-Injection.html
https://secunia.com/advisories/56161
https://www.securityfocus.com/archive/1/530552/100/0/threaded
https://www.securityfocus.com/bid/64496
https://www.securitytracker.com/id/1029539
https://www-01.ibm.com/support/docview.wss?uid=swg1PI07777
https://www-01.ibm.com/support/docview.wss?uid=swg21660289
https://exchange.xforce.ibmcloud.com/vulnerabilities/89591
https://www-304.ibm.com/connections/blogs/PSIRT/entry/security_bulletin_fix_available_for_unauthorized_information_retrieval_security_vulnerability_in_ibm_websphere_portal_cve_2013_6735
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
