2014-12-18 16:00:00
ibm
PUBLISHED
IBM WebSphere Application Server Liberty Profile 8.5.x before 8.5.5.4 allows remote attackers to gain privileges by leveraging the combination of a servlets deployment descriptor security constraints and ServletSecurity annotations.