CVE-2008-4284
5.8
Vector
AV:N/AC:M/Au:N/C:P/I:N/A:P
Exploitability: 8.6 / Impact: 4.9
Source: NVD
Description
Open redirect vulnerability in the ibm_security_logout servlet in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.x versions, 6.0.x before 6.0.2.33, and 6.1.x before 6.1.0.23 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the logoutExitPage feature.
Affected (109)
Products: Ibm: Websphere Application Server
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 5.0.0 |
References (8)
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Timeline
No history available yet.