header-logo
Suggest Exploit
vendor:
WebSphere Edge Server
by:
SecurityFocus
7.5
CVSS
HIGH
Denial of Service
20
CWE
Product Name: WebSphere Edge Server
Affected Version From: IBM WebSphere Edge Server
Affected Version To: IBM WebSphere Edge Server
Patch Exists: YES
Related CWE: CVE-2002-0338
CPE: a:ibm:websphere_edge_server
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2002

A vulnerability in the Caching Proxy component bundled with IBM WebSphere Edge Server

A vulnerability has been reported in the Caching Proxy component bundled with IBM WebSphere Edge Server. The vulnerability is due to inadequate checks when processing HTTP headers. An attacker can exploit this vulnerability by sending a malformed HTTP request to the Caching Proxy. When the service attempts to process the request the service will crash thereby causing the denial of service.

Mitigation:

IBM has released a patch to address this issue.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/6002/info

A vulnerability has been reported in the Caching Proxy component bundled with IBM WebSphere Edge Server. The vulnerability is due to inadequate checks when processing HTTP headers.

An attacker can exploit this vulnerability by sending a malformed HTTP request to the Caching Proxy. When the service attempts to process the request the service will crash thereby causing the denial of service.

GET /cgi-bin/helpout.exe HTTP

Navigation

Suggest Exploit

Services By CQR