User Account Validation Bypass in IBM WebSphere Application Server

User Account Validation Bypass in IBM WebSphere Application Server

CVE-2013-0543 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.47, 7.0 before 7.0.0.29, 8.0 before 8.0.0.6, and 8.5 before 8.5.0.2 on Linux, Solaris, and HP-UX, when a Local OS registry is used, does not properly validate user accounts, which allows remote attackers to bypass intended access restrictions via unspecified vectors.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.