N/A

Unspecified vulnerability in IBM WebSphere Application Server (WAS) 5.1 and 6.0.2 before 6.0.2.33 on z/OS, when CSIv2 Identity Assertion is enabled and Enterprise JavaBeans (EJB) interaction occurs between a WAS 6.1 instance and a WAS pre-6.1 instance, allows local users to have an unknown impact via vectors related to (1) use of the wrong subject and (2) multiple CBIND checks.

N/A

N/A

IBM WebSphere Application z/OS CSLv2 Identity Assertion 未明本地漏洞

IBM WebSphere Application Server是一个完善的、开放的Web应用服务器，它是IBM电子商务应用架构的核心。 在z/OS上，IBM WebSphere Application Server (WAS) 5.1版本和6.0.2.33之前的版本6.0.2中存在未明漏洞，当CSIv2 Identity Assertion被激活以及Enterprise JavaBeans (EJB)交互作用发生在一个WAS 6.1场合和一个WAS pre-6.1场合之间时，本地用户可以借助与(1)主体

N/A

N/A