CVE-2009-1173 Information

Description

IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.3 uses weak permissions (777) for files associated with unspecified \interim fixes\ which allows attackers to modify files that would not have been accessible if the intended 755 permissions were used.

Reference

http://secunia.com/advisories/34131 http://secunia.com/advisories/34461 http://www.securityfocus.com/bid/34259 http://www.vupen.com/english/advisories/2009/0854 http://www-01.ibm.com/support/docview.wss?uid=swg1PK77590 http://www-01.ibm.com/support/docview.wss?uid=swg1PK82988 http://www-01.ibm.com/support/docview.wss?uid=swg27014463