製品・ソフトウェアに関する情報

JVN脆弱性詳細

IBM WebSphere Application Server の Java プラグインにおける権限を取得される脆弱性

Title	IBM WebSphere Application Server の Java プラグインにおける権限を取得される脆弱性
Summary	IBM WebSphere Application Server の Java プラグインには、権限を取得される脆弱性が存在します。
Possible impacts	信頼されないアプレットにより、権限を取得される可能性があります。
Solution	ベンダ情報および参考情報を参照して適切な対策を実施してください。
Publication Date	May 14, 2008, midnight
Registration Date	Sept. 25, 2012, 5:17 p.m.
Last Update	Sept. 25, 2012, 5:17 p.m.

Affected System

IBM

IBM WebSphere Application Server 5.0.2

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2008-2221	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2221
National Vulnerability Database (NVD)
2	CVE-2008-2221	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2221

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-noinfo	https://www.ipa.go.jp/security/vuln/CWE.html#CWEnoinfo

ベンダー情報

No	Name	URL
IBM
1	WebSphere Application Server	http://www-01.ibm.com/software/websphere/

Change Log

No	Changed Details	Date of change
0	[2012年09月25日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2008-2221

Summary	Unspecified vulnerability in the Java plugin in IBM WebSphere Application Server 5.0.2 allows untrusted applets to gain privileges via unknown attack vectors.
Summary	Vulnerabilidad no especificada en la extensión (plugin) Java de IBM WebSphere Application Server 5.0.2 permite a applets no confiables conseguir privilegios a través de vectores no especificados.
Publication Date	May 15, 2008, 3:20 a.m.
Registration Date	Jan. 29, 2021, 1:36 p.m.
Last Update	April 23, 2026, 9:35 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:ibm:websphere_application_server:5.0.2:::::::*

Related information, measures and tools

No	URL	refsource
1	http://secunia.com/advisories/29976	cve@mitre.org
2	http://www-1.ibm.com/support/docview.wss?uid=swg1PK65161	cve@mitre.org
3	http://www.securityfocus.com/bid/28997	cve@mitre.org
4	http://www.securitytracker.com/id?1019956	cve@mitre.org
5	http://www.vupen.com/english/advisories/2008/1411/references	cve@mitre.org
6	https://exchange.xforce.ibmcloud.com/vulnerabilities/42116	cve@mitre.org
7	http://secunia.com/advisories/29976	af854a3a-2127-422b-91ae-364da2661108
8	http://www-1.ibm.com/support/docview.wss?uid=swg1PK65161	af854a3a-2127-422b-91ae-364da2661108
9	http://www.securityfocus.com/bid/28997	af854a3a-2127-422b-91ae-364da2661108
10	http://www.securitytracker.com/id?1019956	af854a3a-2127-422b-91ae-364da2661108
11	http://www.vupen.com/english/advisories/2008/1411/references	af854a3a-2127-422b-91ae-364da2661108
12	https://exchange.xforce.ibmcloud.com/vulnerabilities/42116	af854a3a-2127-422b-91ae-364da2661108

Common Vulnerabilities List