Published: 17/05/2010 Updated: 17/08/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Subscribe to Websphere Application Server

The Web Container in IBM WebSphere Application Server (WAS) 6.0 prior to 6.0.2.43, 6.1 prior to 6.1.0.31, and 7.0 prior to 7.0.0.11 does not properly handle chunked transfer encoding during a call to response.sendRedirect, which allows remote malicious users to cause a denial of service via a GET request.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm websphere application server 6.0.2.31
ibm websphere application server 6.0.2.10
ibm websphere application server 6.0.2.12
ibm websphere application server 6.0.2.4
ibm websphere application server 6.0.2.3
ibm websphere application server 6.0.2
ibm websphere application server 6.0.2.2
ibm websphere application server 6.0.1.2
ibm websphere application server 6.0.2.21
ibm websphere application server 6.0.1.1
ibm websphere application server 6.0.2.27
ibm websphere application server 6.0.2.22
ibm websphere application server 6.0.2.25
ibm websphere application server 6.0.2.32
ibm websphere application server 6.0.2.29
ibm websphere application server 6.0.2.18
ibm websphere application server 6.0.2.20
ibm websphere application server 6.0.2.6
ibm websphere application server 6.0.2.7
ibm websphere application server 6.0.2.13
ibm websphere application server 6.0.2.15
ibm websphere application server 6.0
ibm websphere application server 6.0.1.15
ibm websphere application server 6.0.1.17
ibm websphere application server 6.0.1.9
ibm websphere application server 6.0.1.7
ibm websphere application server 6.0.2.28
ibm websphere application server 6.0.2.8
ibm websphere application server 6.0.2.5
ibm websphere application server 6.0.2.37
ibm websphere application server 6.0.2.11
ibm websphere application server 6.0.2.1
ibm websphere application server 6.0.0.1
ibm websphere application server 6.0.1
ibm websphere application server 6.0.1.5
ibm websphere application server 6.0.1.3
ibm websphere application server 6.0.2.24
ibm websphere application server 6.0.2.23
ibm websphere application server 6.0.2.30
ibm websphere application server 6.0.2.39
ibm websphere application server 6.0.2.14
ibm websphere application server 6.0.2.16
ibm websphere application server 6.0.2.35
ibm websphere application server 6.0.2.9
ibm websphere application server 6.0.2.19
ibm websphere application server 6.0.2.17
ibm websphere application server 6.0.0.2
ibm websphere application server 6.0.2.33
ibm websphere application server 6.0.0.3
ibm websphere application server 6.0.1.13
ibm websphere application server 6.0.1.11
ibm websphere application server 6.1.0.3
ibm websphere application server 6.1.0.5
ibm websphere application server 6.1.0.21
ibm websphere application server 6.1.0.23
ibm websphere application server 6.1.0
ibm websphere application server 6.1.0.0
ibm websphere application server 6.1.0.13
ibm websphere application server 6.1.0.15
ibm websphere application server 6.1.0.29
ibm websphere application server 6.1.0.1
ibm websphere application server 6.1.0.2
ibm websphere application server 6.1.0.17
ibm websphere application server 6.1.0.19
ibm websphere application server 6.1
ibm websphere application server 6.1.0.7
ibm websphere application server 6.1.0.9
ibm websphere application server 6.1.0.11
ibm websphere application server 6.1.0.25
ibm websphere application server 6.1.0.27
ibm websphere application server 7.0.0.3
ibm websphere application server 7.0.0.5
ibm websphere application server 7.0
ibm websphere application server 7.0.0.1
ibm websphere application server 7.0.0.7
ibm websphere application server 7.0.0.9

CWE-20 http://www-01.ibm.com/support/docview.wss?uid=swg1PM08760 https://exchange.xforce.ibmcloud.com/vulnerabilities/58556 https://nvd.nist.gov

Get Started

CVE-2010-0776

Vulnerability Summary

References

Vulmon Search

About

Products

Connect