CVE-2006-4137 | Vulnerability Database | Aqua Security

IBM WebSphere Application Server before 6.1.0.1 allows attackers to obtain sensitive information via unspecified vectors related to (1) the log file, (2) script generated syntax on wsadmin command line, and (3) traces.

Affected Software

Name	Vendor	Start Version	End Version
Websphere_application_server	Ibm	6.0 (including)	6.0 (including)
Websphere_application_server	Ibm	6.0.0.1 (including)	6.0.0.1 (including)
Websphere_application_server	Ibm	6.0.0.2 (including)	6.0.0.2 (including)
Websphere_application_server	Ibm	6.0.0.3 (including)	6.0.0.3 (including)
Websphere_application_server	Ibm	6.0.1 (including)	6.0.1 (including)
Websphere_application_server	Ibm	6.0.1.2 (including)	6.0.1.2 (including)
Websphere_application_server	Ibm	6.0.2 (including)	6.0.2 (including)
Websphere_application_server	Ibm	6.0.2.1 (including)	6.0.2.1 (including)
Websphere_application_server	Ibm	6.0.2.2 (including)	6.0.2.2 (including)
Websphere_application_server	Ibm	6.0.2.3 (including)	6.0.2.3 (including)
Websphere_application_server	Ibm	6.0.2.4 (including)	6.0.2.4 (including)
Websphere_application_server	Ibm	6.0.2.5 (including)	6.0.2.5 (including)
Websphere_application_server	Ibm	6.0.2.6 (including)	6.0.2.6 (including)
Websphere_application_server	Ibm	6.0.2.7 (including)	6.0.2.7 (including)
Websphere_application_server	Ibm	6.0.2.9 (including)	6.0.2.9 (including)
Websphere_application_server	Ibm	6.1.0.0 (including)	6.1.0.0 (including)

References

http://secunia.com/advisories/21440
http://www-1.ibm.com/support/docview.wss?rs=180\u0026uid=swg27007951
http://www-1.ibm.com/support/search.wss?rs=0\u0026q=PK27547\u0026apar=only
http://www-1.ibm.com/support/search.wss?rs=0\u0026q=PK27857\u0026apar=only
http://www-1.ibm.com/support/search.wss?rs=0\u0026q=PK28408\u0026apar=only
http://www.securityfocus.com/bid/19463
http://www.vupen.com/english/advisories/2006/3262

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-4137
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html