Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The (1) mod_ibm_ssl and (2) mod_cgid modules in IBM HTTP Server 6.0.x before 6.0.2.31 and 6.1.x before 6.1.0.19, as used in WebSphere Application Server (WAS), set incorrect permissions for AF_UNIX sockets, which has unknown impact and local attack vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ibm websphere_application_server mod_ibm_ssl和mod_cgid 权限许可和访问控制漏洞
Vulnerability Description
IBM WebSphere Application Server是一个完善的、开放的Web应用服务器,它是IBM电子商务应用架构的核心。 当在WebSphere Application Server (WAS)中使用时,IBM HTTP Server 6.0.2.31之前的6.0.x版本和6.1.0.19之前的6.1.x版本中的(1)mod_ibm_ssl和(2)mod_cgid模块会为AF_UNIX sockets设置不正确的许可,这会造成未知影响和本地攻击向量。
CVSS Information
N/A
Vulnerability Type
N/A