Intranet Network Mapping Vulnerability in IBM WebSphere Portal

Intranet Network Mapping Vulnerability in IBM WebSphere Portal

CVE-2014-4746 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

IBM WebSphere Portal 8.0.0 before 8.0.0.1 CF13 and 8.5.0 through CF01 provides different error codes for firewall-traversal requests depending on whether the intranet host exists, which allows remote attackers to map the intranet network via a series of requests.

Learn more about our Cis Benchmark Audit For Ibm Websphere.