IBM Websphere Caching Proxy Server 5.0 2 – Denial of Service

24次阅读
没有评论

IBM Websphere Caching Proxy Server 5.0 2 – Denial of Service

漏洞ID 1054507 漏洞类型
发布时间 2004-07-02 更新时间 2004-07-02
IBM Websphere Caching Proxy Server 5.0 2 - Denial of ServiceCVE编号 N/A
IBM Websphere Caching Proxy Server 5.0 2 - Denial of ServiceCNNVD-ID N/A
漏洞平台 Unix CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/24248
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/10651/info

A denial of service vulnerability is reported in the Caching Proxy component bundled with the IBM Websphere Edge Server.

It is reported that if the proxy is configured with the JunctionRewrite directive in conjunction with the UseCookie option, an attacker may be able to crash the application.

A remote attacker reportedly is able to cause a denial of service condition with one request.

IBM has released a patch dealing with this issue. This patch is available only to customers with support levels 2 or 3. 

echo ?GET? | nc www.example.com <proxy_port>

相关推荐: ez-ipupdate执行未认证操作漏洞

ez-ipupdate执行未认证操作漏洞 漏洞ID 1202172 漏洞类型 未知 发布时间 2003-12-31 更新时间 2003-12-31 CVE编号 CVE-2003-0887 CNNVD-ID CNNVD-200312-251 漏洞平台 N/A C…

正文完
 0