CVE Vulnerabilities

CVE-2009-0436

Published: Feb 10, 2009 | Modified: Aug 08, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

The (1) mod_ibm_ssl and (2) mod_cgid modules in IBM HTTP Server 6.0.x before 6.0.2.31 and 6.1.x before 6.1.0.19, as used in WebSphere Application Server (WAS), set incorrect permissions for AF_UNIX sockets, which has unknown impact and local attack vectors.

Affected Software

Name Vendor Start Version End Version
Websphere_application_server Ibm 6.1 6.1
Websphere_application_server Ibm 6.0.2.1 6.0.2.1
Websphere_application_server Ibm 6.0.2.5 6.0.2.5
Websphere_application_server Ibm 6.0.0.3 6.0.0.3
Websphere_application_server Ibm 6.1.0.2 6.1.0.2
Websphere_application_server Ibm 6.0.1.15 6.0.1.15
Websphere_application_server Ibm 6.1.0.4 6.1.0.4
Websphere_application_server Ibm 6.0.1.3 6.0.1.3
Websphere_application_server Ibm 6.0.2.13 6.0.2.13
Websphere_application_server Ibm 6.1.0.11 6.1.0.11
Websphere_application_server Ibm 6.0.2.9 6.0.2.9
Websphere_application_server Ibm 6.0.1.11 6.0.1.11
Websphere_application_server Ibm 6.0.2.28 6.0.2.28
Websphere_application_server Ibm 6.1.0.14 6.1.0.14
Websphere_application_server Ibm 6.0.2.11 6.0.2.11
Websphere_application_server Ibm 6.0.2.6 6.0.2.6
Websphere_application_server Ibm 6.0.2.2 6.0.2.2
Websphere_application_server Ibm 6.0.2 6.0.2
Websphere_application_server Ibm 6.0.2.24 6.0.2.24
Websphere_application_server Ibm 6.0.1.9 6.0.1.9
Websphere_application_server Ibm 6.0.1.17 6.0.1.17
Websphere_application_server Ibm 6.0.2.15 6.0.2.15
Websphere_application_server Ibm 6.0.2.4 6.0.2.4
Websphere_application_server Ibm 6.0.2.17 6.0.2.17
Websphere_application_server Ibm 6.1.0.9 6.1.0.9
Websphere_application_server Ibm 6.0.1.2 6.0.1.2
Websphere_application_server Ibm 6.0.0.1 6.0.0.1
Websphere_application_server Ibm 6.0.2.30 6.0.2.30
Websphere_application_server Ibm 6.1.0.0 6.1.0.0
Websphere_application_server Ibm 6.1.0.1 6.1.0.1
Websphere_application_server Ibm 6.0.2.29 6.0.2.29
Websphere_application_server Ibm 6.0.2.23 6.0.2.23
Websphere_application_server Ibm 6.1.13 6.1.13
Websphere_application_server Ibm 6.0.1 6.0.1
Websphere_application_server Ibm 6.0.2.7 6.0.2.7
Websphere_application_server Ibm 6.0.0.2 6.0.0.2
Websphere_application_server Ibm 6.1.0.7 6.1.0.7
Websphere_application_server Ibm 6.0.2.27 6.0.2.27
Websphere_application_server Ibm 6.1.0.3 6.1.0.3
Websphere_application_server Ibm 6.1.0.17 6.1.0.17
Websphere_application_server Ibm 6.1.0.13 6.1.0.13
Websphere_application_server Ibm 6.1.0.16 6.1.0.16
Websphere_application_server Ibm 6.1.0.6 6.1.0.6
Websphere_application_server Ibm 6.0.2.22 6.0.2.22
Websphere_application_server Ibm 6.0.1.5 6.0.1.5
Websphere_application_server Ibm 6.1.0.10 6.1.0.10
Websphere_application_server Ibm 6.0.1.7 6.0.1.7
Websphere_application_server Ibm 6.0 6.0
Websphere_application_server Ibm 6.1.0.8 6.1.0.8
Websphere_application_server Ibm 6.1.0.15 6.1.0.15
Websphere_application_server Ibm 6.0.2.3 6.0.2.3
Websphere_application_server Ibm 6.1.0.18 6.1.0.18
Websphere_application_server Ibm 6.0.2.19 6.0.2.19
Websphere_application_server Ibm 6.0.1.1 6.0.1.1
Websphere_application_server Ibm 6.0.2.25 6.0.2.25
Websphere_application_server Ibm 6.1.0 6.1.0
Websphere_application_server Ibm 6.1.0.5 6.1.0.5
Websphere_application_server Ibm 6.0.1.13 6.0.1.13
Websphere_application_server Ibm 6.1.0.12 6.1.0.12

References