IBM WebSphere Application Server for z/OS JAX-RPC Unspecified Remote Security Vulnerability

Bugtraq ID:	52250
Class:	Unknown
CVE:
Remote:	Yes
Local:	No
Published:	Mar 01 2012 12:00AM
Updated:	May 14 2012 07:50PM
Credit:	IBM
Vulnerable:	IBM WebSphere Application Server for z/OS 7.0.0.22 IBM WebSphere Application Server for z/OS 7.0.0.21 IBM WebSphere Application Server for z/OS 7.0.0.20 IBM WebSphere Application Server for z/OS 7.0.0.19 IBM WebSphere Application Server for z/OS 7.0.0.18 IBM WebSphere Application Server for z/OS 7.0.0.15 IBM WebSphere Application Server for z/OS 7.0 IBM WebSphere Application Server for z/OS 6.1 IBM Websphere Application Server 6.1 41 IBM Websphere Application Server 6.1
Not Vulnerable:	IBM WebSphere Application Server for z/OS 7.0.0.23 IBM Websphere Application Server 6.1.0.43

IBM WebSphere Application Server for z/OS JAX-RPC Unspecified Remote Security Vulnerability

IBM WebSphere Application Server for z/OS is prone to an unspecified remote security vulnerability.

Little is known about this issue or its effects at this time. We will update this BID as more information emerges.

This issue is fixed in WebSphere Application Server 6.1.0.43.

IBM WebSphere Application Server for z/OS JAX-RPC Unspecified Remote Security Vulnerability

Currently, we are not aware of any exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

IBM WebSphere Application Server for z/OS JAX-RPC Unspecified Remote Security Vulnerability

Solution:
The vendor has released fixes. Please see the references for details.

IBM WebSphere Application Server for z/OS JAX-RPC Unspecified Remote Security Vulnerability

References:

• IBM Websphere Homepage (IBM)
  
• PM53810: SHIP FMID H28W700 COMPID 5655I3500 FIX PACK 7.0.0.23 (IBM)
  
• PM59115: SHIP FMID H28W610 COMPID 5655I3500 FIX PACK 6.1.0.43 (IBM)