Security Bulletin: : Fixes available for vulnerability in Apache HttpComponents HttpClient contained in IBM WebSphere Portal (CVE-2011-1498)

Description:

Apache HttpComponents could allow a remote attacker to obtain sensitive information, caused by an unspecified error in HttpClient. An attacker could exploit this vulnerability to send the Proxy-Authorization header to the host and disclose the user's password.

 TechNote to solve it