CVE-2006-4137 Information

Description

IBM WebSphere Application Server before 6.1.0.1 allows attackers to obtain sensitive information via unspecified vectors related to (1) the log file (2) \script generated syntax on wsadmin command line\ and (3) traces.

Reference

http://secunia.com/advisories/21440 http://www.securityfocus.com/bid/19463 http://www.vupen.com/english/advisories/2006/3262 http://www-1.ibm.com/support/docview.wss?rs=180&uid=swg27007951 http://www-1.ibm.com/support/search.wss?rs=0&q=PK27547&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=PK27857&apar=only http://www-1.ibm.com/support/search.wss?rs=0&q=PK28408&apar=only