IBM WebSphere Application Server Liberty CVE-2016-3040 Open Redirect Vulnerability

Bugtraq ID:	92986
Class:	Input Validation Error
CVE:	CVE-2016-3040
Remote:	Yes
Local:	No
Published:	Sep 12 2016 12:00AM
Updated:	Jan 12 2017 01:10AM
Credit:	The vendor reported this issue.
Vulnerable:	IBM WebSphere Application Server Liberty Profile 8.5.5 IBM WebSphere Application Server Liberty Profile 8.5 IBM WebSphere Application Server Liberty Profile 0 IBM WebSphere Application Server Full Profile 8.5.5 IBM WebSphere Application Server Full Profile 8.5 IBM Websphere Application Server 9.0 IBM Tivoli Storage Productivity Center 5.2.6 IBM Tivoli Storage Productivity Center 5.2.5 IBM Tivoli Storage Productivity Center 5.2.2 IBM Tivoli Storage Productivity Center 5.2 IBM Tivoli Storage Productivity Center 5.2.7.1 IBM Tivoli Storage Productivity Center 5.2.7 IBM Tivoli Storage Productivity Center 5.2.4 IBM Tivoli Storage Productivity Center 5.2.3 IBM Tivoli Storage Manager 7.1.7.000 IBM Tivoli Storage Manager 7.1.5 IBM Tivoli Storage Manager 7.1.4.3 IBM Tivoli Storage Manager 7.1.4 IBM Tivoli Storage Manager 7.1.3 IBM Tivoli Storage Manager 7.1.0.000 IBM Tivoli Storage Manager 6.4.2.400 IBM Tivoli Storage Manager 6.4.2.2 IBM Tivoli Storage Manager 6.4.1.000 IBM Spectrum Control 5.2.11 IBM Spectrum Control 5.2.10 IBM Spectrum Control 5.2.9 IBM Spectrum Control 5.2.8 IBM Security Privileged Identity Manager Virtual Appliance 2.0 IBM Messagesight 2.0 IBM Messagesight 1.2.0.3 IBM Messagesight 1.2.0.1 IBM Messagesight 1.2 IBM Messagesight 1.1.0.1 IBM Messagesight 1.1 IBM Bluemix Liberty for Java 3.2 IBM Bluemix Liberty for Java 2.9 IBM Bluemix Liberty for Java 2.3 IBM Bluemix Liberty for Java 2.2 IBM Bluemix Liberty for Java 2.1 IBM Bluemix Liberty for Java 2.0 IBM Bluemix Liberty for Java 1.9 IBM Bluemix Liberty for Java 1.8 IBM Bluemix Liberty for Java 1.7 IBM Bluemix Liberty for Java 1.6 IBM Bluemix Liberty for Java 1.5 IBM Bluemix Liberty for Java 1.3

Not Vulnerable: