CVE-2007-6679

Unspecified vulnerability in the Administrative Console in IBM WebSphere Application Server 6.1 before Fix Pack 13 has unknown impact and attack vectors, related to "security concerns with monitor role users." NOTE: it was later reported that 6.0.2 before Fix Pack 25 is also affected.

Published: Jan 10, 2008
Updated: Apr 13, 2023
CVE: CVE-2007-6679
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
ibm / websphere_application_server	6.1	6.1.x
ibm / websphere_application_server	6.1.0.2	6.1.0.2.x
ibm / websphere_application_server	6.1.0.11	6.1.0.11.x
ibm / websphere_application_server	6.1.0.9	6.1.0.9.x
ibm / websphere_application_server	6.1.0.1	6.1.0.1.x
ibm / websphere_application_server	6.1.0.7	6.1.0.7.x
ibm / websphere_application_server	6.1.0.3	6.1.0.3.x
ibm / websphere_application_server	-	6.0.2.24.x
ibm / websphere_application_server	6.1.0.5	6.1.0.5.x

http://secunia.com/advisories/28588
http://securitytracker.com/id?1019174
http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg27007951
http://www-1.ibm.com/support/docview.wss?uid=swg27006876
http://www-1.ibm.com/support/search.wss?rs=0&q=PK45768&apar=only
http://www.vupen.com/english/advisories/2007/3955
http://www.vupen.com/english/advisories/2008/0241

Vulnerability Database

289,697

CVE-2007-6679