Home Services Publications News About us Contact Recruitment Site map

May, 2008

April, 2008

March, 2008

February, 2008

January, 2008

December, 2007


News archives
News
March 28, 2008
MWR InfoSecurity publish two Websphere advisories


Two advisories were published today for vulnerabilities within Websphere.  The first of these relates to MQ MCAUSER setting bypass vulnerability where a method of bypassing this authorisation control has been discovered which would enable unauthorised access to be gained.

The second vulnerability concerns MQ security exit authentication. Within Websphere MQ it is possible to protect the channels within the Queue Manager with a security exit which requires that an authentication check be passed before a connection can be established. A method of bypassing this authentication has been discovered which would enable unauthorised access to be gained.

The full advisories and links to patches can be viewed here.
On Top
Penetration testing
Application Security Testing
Wireless Testing
Fasthold Vulnerability Assessment
Load Testing
Security Management Consultancy
Firewall Testing
Internal Penetration Testing
Physical Testing

 
home       services       news       about us       contact       recruitment       sitemap

MWR InfoSecurity St Clement House Alencon Link Basingstoke Hants RG21 7SB
Tel: 01256 300920   Fax: 01256 844083