IBM WebSphere Application Server WebContainer HTTP Request Header Security Weakness

IBM WebSphere Application Server WebContainer HTTP Request Header Security Weakness

IBM WebSphere Application Server is prone to a security weakness regarding an HTTP request header. The software fails to sanitize a certain HTTP header when the data is redirected to an error message.

An attacker may exploit this issue to steal cookie-based authentication credentials and launch other attacks.