Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 22/10/2008 Updated: 08/08/2017

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 694

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Subscribe to Websphere Application Server

The HTTP_Request_Parser method in the HTTP Transport component in IBM WebSphere Application Server (WAS) 6.0.2 prior to 6.0.2.31 allows remote malicious users to cause a denial of service (controller 0C4 abend and application hang) via a long HTTP Host header, related to "storage overlay" on the stack and a "parse failure."

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm websphere application server 6.0.2.13
ibm websphere application server 6.0.2.15
ibm websphere application server 6.0.2.17
ibm websphere application server 6.0.2.4
ibm websphere application server 6.0.2.3
ibm websphere application server 6.0.2
ibm websphere application server 6.0.2.23
ibm websphere application server 6.0.2.9
ibm websphere application server 6.0.2.19
ibm websphere application server 6.0.2.2
ibm websphere application server 6.0.2.25
ibm websphere application server 6.0.2.27
ibm websphere application server 6.0.2.1
ibm websphere application server 6.0.2.11
ibm websphere application server 6.0.2.6
ibm websphere application server 6.0.2.5

CWE-399 http://www-1.ibm.com/support/docview.wss?uid=swg1PK69371 http://www.securityfocus.com/bid/31839 http://www-01.ibm.com/support/docview.wss?uid=swg27006876 http://secunia.com/advisories/32296 http://www.vupen.com/english/advisories/2008/2871 https://exchange.xforce.ibmcloud.com/vulnerabilities/45993 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-4678

Vulnerability Summary

References

Vulmon Search

About

Products

Connect