CVE-2014-0823 Information

Description

IBM WebSphere Application Server (WAS) 8.x before 8.0.0.9 and 8.5.x before 8.5.5.2 allows remote attackers to read arbitrary files via a crafted URL.

Reference

http://www.securityfocus.com/bid/67329 http://www-01.ibm.com/support/docview.wss?uid=swg1PI05324 http://www-01.ibm.com/support/docview.wss?uid=swg21669554 http://www-01.ibm.com/support/docview.wss?uid=swg21676092 https://exchange.xforce.ibmcloud.com/vulnerabilities/90498