Dennis' Domino Blog

Dennis' Domino Blog
« Things holding back my 8.5 upgradeEmbedded sametime in 8.5 takes focus »

Potential Security Risk for WebSphere Commerce: PK81387

Permalink 03/27/09 10:58, by Dennis van Remortel, Categories: IBM, Websphere

Link: http://www-01.ibm.com/support/docview.wss?uid=swg21380417

Time to fire up the update installers!

Flash (Alert)

Abstract
All WebSphere Commerce sites may be affected by a security risk found in WebSphere Application Server.

Content
As WebSphere Commerce is used with WebSphere Application Server, the following vulnerability can exist:

In the WebSphere Application Server, there is a security risk where an attacker can remotely display or execute files in the WAR file. This includes the files in the WEB-INF and META-INF directories.

The following link provides information and instructions on how to apply interim fixes to resolve the security risk. Please verify and locate the relevant WebSphere Application Server version and apply the recommended fix:

Potential risk when using Web based applications on WebSphere Application Server(PK81387)

No feedback yet

Leave a comment


Your email address will not be revealed on this site.

Your URL will be displayed.
PoorExcellent
(Line breaks become <br />)
(Name, email & website)
(Allow users to contact you through a message form (your email will not be revealed.)
What Lotus product is discussed mainly here? The answer is domino
antispam test

Dennis' Domino Blog

Yet another Domino/Websphere Admin blog.

About me:
Lotus Notes/Domino Admin
Websphere Commerce Admin
sceptic
critic

Downloads

Search

Categories

XML Feeds

What is RSS?

Twitter

Planet Lotus

Usefull links

powered by b2evolution free blog software

©2012 by Dennis van Remortel

Contact | b2evolution skins by Asevo | blog software | best hosting | advertising