Lucene search

[email protected]CVE-2009-0433

HistoryFeb 10, 2009 - 10:30 p.m.

CVE-2009-0433

2009-02-1022:30:00

[email protected]

web.nvd.nist.gov

cve-2009-0433

ibm websphere

application server

was

vulnerability

denial of service

nvd

web server

plugin

content buffering

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.1%

JSON

Unspecified vulnerability in IBM WebSphere Application Server (WAS) 5.1.x before 5.1.1.19, 6.0.x before 6.0.2.29, and 6.1.x before 6.1.0.19, when Web Server plug-in content buffering is enabled, allows attackers to cause a denial of service (daemon crash) via unknown vectors, related to a mishandling of client read failures in which clients receive many 500 HTTP error responses and backend servers are incorrectly labeled as down.

Affected configurations

NVD

Node

ibmwebsphere_application_serverMatch5.1.0

ibmwebsphere_application_serverMatch5.1.0.2

ibmwebsphere_application_serverMatch5.1.0.3

ibmwebsphere_application_serverMatch5.1.0.4

ibmwebsphere_application_serverMatch5.1.0.5

ibmwebsphere_application_serverMatch5.1.1

ibmwebsphere_application_serverMatch5.1.1.1

ibmwebsphere_application_serverMatch5.1.1.10

ibmwebsphere_application_serverMatch5.1.1.11

ibmwebsphere_application_serverMatch5.1.1.12

ibmwebsphere_application_serverMatch5.1.1.13

ibmwebsphere_application_serverMatch5.1.1.14

ibmwebsphere_application_serverMatch5.1.1.15

ibmwebsphere_application_serverMatch5.1.1.16

ibmwebsphere_application_serverMatch5.1.1.17

ibmwebsphere_application_serverMatch5.1.1.18

ibmwebsphere_application_serverMatch5.1.1.19

ibmwebsphere_application_serverMatch6.0

ibmwebsphere_application_serverMatch6.0.0.1

ibmwebsphere_application_serverMatch6.0.0.2

ibmwebsphere_application_serverMatch6.0.0.3

ibmwebsphere_application_serverMatch6.0.1

ibmwebsphere_application_serverMatch6.0.1.1

ibmwebsphere_application_serverMatch6.0.1.2

ibmwebsphere_application_serverMatch6.0.1.3

ibmwebsphere_application_serverMatch6.0.1.5

ibmwebsphere_application_serverMatch6.0.1.7

ibmwebsphere_application_serverMatch6.0.1.9

ibmwebsphere_application_serverMatch6.0.1.11

ibmwebsphere_application_serverMatch6.0.1.13

ibmwebsphere_application_serverMatch6.0.1.15

ibmwebsphere_application_serverMatch6.0.1.17

ibmwebsphere_application_serverMatch6.0.2

ibmwebsphere_application_serverMatch6.0.2.1

ibmwebsphere_application_serverMatch6.0.2.2

ibmwebsphere_application_serverMatch6.0.2.3

ibmwebsphere_application_serverMatch6.0.2.4

ibmwebsphere_application_serverMatch6.0.2.5

ibmwebsphere_application_serverMatch6.0.2.6

ibmwebsphere_application_serverMatch6.0.2.7

ibmwebsphere_application_serverMatch6.0.2.9

ibmwebsphere_application_serverMatch6.0.2.11

ibmwebsphere_application_serverMatch6.0.2.13

ibmwebsphere_application_serverMatch6.0.2.15

ibmwebsphere_application_serverMatch6.0.2.17

ibmwebsphere_application_serverMatch6.0.2.19

ibmwebsphere_application_serverMatch6.0.2.22

ibmwebsphere_application_serverMatch6.0.2.23

ibmwebsphere_application_serverMatch6.0.2.24

ibmwebsphere_application_serverMatch6.0.2.25

ibmwebsphere_application_serverMatch6.0.2.27

ibmwebsphere_application_serverMatch6.0.2.28

ibmwebsphere_application_serverMatch6.1

ibmwebsphere_application_serverMatch6.1.0

ibmwebsphere_application_serverMatch6.1.0.0

ibmwebsphere_application_serverMatch6.1.0.1

ibmwebsphere_application_serverMatch6.1.0.2

ibmwebsphere_application_serverMatch6.1.0.3

ibmwebsphere_application_serverMatch6.1.0.4

ibmwebsphere_application_serverMatch6.1.0.5

ibmwebsphere_application_serverMatch6.1.0.6

ibmwebsphere_application_serverMatch6.1.0.7

ibmwebsphere_application_serverMatch6.1.0.8

ibmwebsphere_application_serverMatch6.1.0.9

ibmwebsphere_application_serverMatch6.1.0.10

ibmwebsphere_application_serverMatch6.1.0.11

ibmwebsphere_application_serverMatch6.1.0.12

ibmwebsphere_application_serverMatch6.1.0.13

ibmwebsphere_application_serverMatch6.1.0.14

ibmwebsphere_application_serverMatch6.1.0.15

ibmwebsphere_application_serverMatch6.1.0.16

ibmwebsphere_application_serverMatch6.1.0.17

ibmwebsphere_application_serverMatch6.1.0.18

CPENameOperatorVersion
ibm:websphere_application_serveribm websphere application servereq5.1.0
ibm:websphere_application_serveribm websphere application servereq5.1.0.2
ibm:websphere_application_serveribm websphere application servereq5.1.0.3
ibm:websphere_application_serveribm websphere application servereq5.1.0.4
ibm:websphere_application_serveribm websphere application servereq5.1.0.5
ibm:websphere_application_serveribm websphere application servereq5.1.1
ibm:websphere_application_serveribm websphere application servereq5.1.1.1
ibm:websphere_application_serveribm websphere application servereq5.1.1.10
ibm:websphere_application_serveribm websphere application servereq5.1.1.11
ibm:websphere_application_serveribm websphere application servereq5.1.1.12

CPE	Name	Operator	Version
ibm:websphere_application_server	ibm websphere application server	eq	5.1.0
ibm:websphere_application_server	ibm websphere application server	eq	5.1.0.2
ibm:websphere_application_server	ibm websphere application server	eq	5.1.0.3
ibm:websphere_application_server	ibm websphere application server	eq	5.1.0.4
ibm:websphere_application_server	ibm websphere application server	eq	5.1.0.5
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1.1
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1.10
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1.11
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1.12

Rows per page:

1-10 of 731

References

www-01.ibm.com/support/docview.wss?uid=swg1PK67161

www-01.ibm.com/support/docview.wss?uid=swg27006879

www-01.ibm.com/support/docview.wss?uid=swg27007033

www-01.ibm.com/support/docview.wss?uid=swg27007951

www-1.ibm.com/support/docview.wss?uid=swg1PK63499

www.securityfocus.com/bid/33700

exchange.xforce.ibmcloud.com/vulnerabilities/48523

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:N/I:N/A:P

6.5 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.1%

JSON

Related for CVE-2009-0433

nvd1 prion1 cvelist1 nessus1