IBM WebSphere Portal Server Remote Administration Authentication Bypass Vulnerability

info
discussion
exploit
solution
references

IBM WebSphere Portal Server Remote Administration Authentication Bypass Vulnerability

IBM WebSphere Portal Server is prone to an authentication-bypass vulnerability.

Exploiting this issue can allow remote attackers to gain unauthorized administrative privileges.

The following versions of WebSphere Portal Server and WebSphere Portal Express are vulnerable:

5.1.0.1 to 5.1.0.5
6.0.0.0 and 6.0.0.1
6.0.1.0, 6.0.1.1, 6.0.1.3
6.1.0.0