Fixpack 2 for IBM WebSphere 6.1
Fixpack 2 for the IBM WebSphere 6.1 web application server fixes a number of bugs and removes a number of security vulnerabilities. It was possible for an attacker to log on to the server without entering a username–password pair. Prepared HTTP requests could then have been used to induce some Java servlets to send source code rather than an HTML response.
The update also fixes an undisclosed security vulnerability. Updates for the many operating systems supported by WebSphere 6.1.x can be downloaded from the IBM website.
- WebSphere Application Server V6.1.0 Fix Pack 2 for AIX, security bulletin from IBM
- Fix list for WebSphere Application Server Version 6.1.0, summary of bugs fixed from IBM
(ehe)