CVE-2006-3231
Summary
| CVE | CVE-2006-3231 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2006-06-27 10:05:00 UTC |
| Updated | 2019-10-09 22:50:00 UTC |
| Description | Unspecified vulnerability in IBM WebSphere Application Server (WAS) before 6.0.2.11, when fileServingEnabled is true, allows remote attackers to obtain JSP source code and other sensitive information via "URIs with special characters." |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Ibm | Websphere Application Server | 2.0 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.0 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.0.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.0.2.1 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.0.2.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.0.2.3 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.0.2.4 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.5 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.5.1 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.5.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.5.3 | All | All | All |
| Application | Ibm | Websphere Application Server | 4.0.3 | All | All | All |
| Application | Ibm | Websphere Application Server | 4.0.4 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.1 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.1 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.10 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.11 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.12 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.13 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.14 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.15 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.16 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.3 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.4 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.5 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.6 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.7 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.8 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.9 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.0 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.0.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.0.4 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.0.5 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.1 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.10 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.3 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.4 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.5 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.6 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.7 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.8 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.9 | All | All | All |
| Application | Ibm | Websphere Application Server | 6.0 | All | All | All |
| Application | Ibm | Websphere Application Server | 6.0.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 6.0.2.9 | All | All | All |
| Application | Ibm | Websphere Application Server | 2.0 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.0 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.0.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.0.2.1 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.0.2.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.0.2.3 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.0.2.4 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.5 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.5.1 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.5.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 3.5.3 | All | All | All |
| Application | Ibm | Websphere Application Server | 4.0.3 | All | All | All |
| Application | Ibm | Websphere Application Server | 4.0.4 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.1 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.1 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.10 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.11 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.12 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.13 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.14 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.15 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.16 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.3 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.4 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.5 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.6 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.7 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.8 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.0.2.9 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.0 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.0.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.0.4 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.0.5 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.1 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.10 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.3 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.4 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.5 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.6 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.7 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.8 | All | All | All |
| Application | Ibm | Websphere Application Server | 5.1.1.9 | All | All | All |
| Application | Ibm | Websphere Application Server | 6.0 | All | All | All |
| Application | Ibm | Websphere Application Server | 6.0.2 | All | All | All |
| Application | Ibm | Websphere Application Server | 6.0.2.9 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| IBM WebSphere Application Server Multiple Vulnerabilities - Advisories - Secunia | SECUNIA | secunia.com | Patch, Vendor Advisory |
| WebSphere Application Server JSP Source Code Disclosure - Advisories - Secunia | SECUNIA | secunia.com | Vendor Advisory |
| IBM WebSphere Application Server Source Code Disclosure Vulnerability | BID | www.securityfocus.com | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | Vendor Advisory |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | Vendor Advisory |
| IBM Fix list for WebSphere Application Server Version 6.0.2 - United States | AIXAPAR | www-1.ibm.com | |
| IBM Possible security exposure with JavaServer Page (JSP) and IBM WebSphere Application Server (PK23475, PK32374, PK22928, PK00091, PQ91033, PQ99537, PK28963, PK20181, PK23670) - United States | CONFIRM | www-1.ibm.com | |
| IBM Websphere Application Server Prior to 6.0.2.11 Multiple Vulnerabilities | BID | www.securityfocus.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.