2.6 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
6.5 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
72.1%
Unspecified vulnerability in IBM WebSphere Application Server (WAS) 5.1.x before 5.1.1.19, 6.0.x before 6.0.2.29, and 6.1.x before 6.1.0.19, when Web Server plug-in content buffering is enabled, allows attackers to cause a denial of service (daemon crash) via unknown vectors, related to a mishandling of client read failures in which clients receive many 500 HTTP error responses and backend servers are incorrectly labeled as down.
www-01.ibm.com/support/docview.wss?uid=swg1PK67161
www-01.ibm.com/support/docview.wss?uid=swg27006879
www-01.ibm.com/support/docview.wss?uid=swg27007033
www-01.ibm.com/support/docview.wss?uid=swg27007951
www-1.ibm.com/support/docview.wss?uid=swg1PK63499
www.securityfocus.com/bid/33700
exchange.xforce.ibmcloud.com/vulnerabilities/48523