IBM WebSphere Portal 8.0.0 before 8.0.0.1 CF13 and 8.5.0 through CF01 provides different error codes for firewall-traversal requests depending on whether the intranet host exists, which allows remote attackers to map the intranet network via a series of requests.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: ibm
Published: 2014-08-12T01:00:00
Updated: 2017-08-28T12:57:01
Reserved: 2014-07-09T00:00:00
Link: CVE-2014-4746
JSON object: View
NVD Information
Status : Modified
Published: 2014-08-12T05:01:03.950
Modified: 2017-08-29T01:35:05.703
Link: CVE-2014-4746
JSON object: View
Redhat Information
No data.
CWE