Search...

CVE-2014-0964

2014-05-16T11:12:00

ID CVE-2014-0964
Type cve
Reporter cve@mitre.org
Modified 2017-08-29T01:34:00

Description

IBM WebSphere Application Server (WAS) 6.1.0.0 through 6.1.0.47 and 6.0.2.0 through 6.0.2.43 allows remote attackers to cause a denial of service via crafted TLS traffic, as demonstrated by traffic from a CVE-2014-0160 vulnerability-assessment tool.

JSON Vulners Source

Initial Source

{"id": "CVE-2014-0964", "bulletinFamily": "NVD", "title": "CVE-2014-0964", "description": "IBM WebSphere Application Server (WAS) 6.1.0.0 through 6.1.0.47 and 6.0.2.0 through 6.0.2.43 allows remote attackers to cause a denial of service via crafted TLS traffic, as demonstrated by traffic from a CVE-2014-0160 vulnerability-assessment tool.", "published": "2014-05-16T11:12:00", "modified": "2017-08-29T01:34:00", "cvss": {"score": 7.1, "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:C"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0964", "reporter": "cve@mitre.org", "references": ["http://www-01.ibm.com/support/docview.wss?uid=swg1PI16981", "http://www-01.ibm.com/support/docview.wss?uid=swg21671835", "http://www.securitytracker.com/id/1030280", "http://www-304.ibm.com/support/docview.wss?uid=swg21673808", "http://www-01.ibm.com/support/docview.wss?uid=swg1PI14306", "https://exchange.xforce.ibmcloud.com/vulnerabilities/92877", "http://www-01.ibm.com/support/docview.wss?uid=swg1PI17128"], "cvelist": ["CVE-2014-0964"], "type": "cve", "lastseen": "2020-10-03T12:01:13", "edition": 3, "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562310806827"]}], "modified": "2020-10-03T12:01:13", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2020-10-03T12:01:13", "rev": 2}, "vulnersScore": 5.4}, "cpe": ["cpe:/a:ibm:websphere_application_server:6.1.0.2", "cpe:/a:ibm:websphere_application_server:6.0.2.19", "cpe:/a:ibm:websphere_application_server:6.0.2.37", "cpe:/a:ibm:websphere_application_server:6.1.0.43", "cpe:/a:ibm:websphere_application_server:6.0.2.39", "cpe:/a:ibm:websphere_application_server:6.1.0.25", "cpe:/a:ibm:websphere_application_server:6.0.2.41", "cpe:/a:ibm:websphere_application_server:6.0.2.30", "cpe:/a:ibm:websphere_application_server:6.0.2.2", "cpe:/a:ibm:websphere_application_server:6.1.0.5", "cpe:/a:ibm:websphere_application_server:6.0.2.7", "cpe:/a:ibm:websphere_application_server:6.0.2.25", "cpe:/a:ibm:websphere_application_server:6.0.2.17", "cpe:/a:ibm:websphere_application_server:6.1.0.39", "cpe:/a:ibm:websphere_application_server:6.0.2.31", "cpe:/a:ibm:websphere_application_server:6.1.0.35", "cpe:/a:ibm:websphere_application_server:6.1.0.3", "cpe:/a:ibm:websphere_application_server:6.0.2.15", "cpe:/a:ibm:websphere_application_server:6.0.2.5", "cpe:/a:ibm:websphere_application_server:6.0.2.13", "cpe:/a:ibm:websphere_application_server:6.0.2.32", "cpe:/a:ibm:websphere_application_server:6.1.0.29", "cpe:/a:ibm:websphere_application_server:6.0.2.4", "cpe:/a:ibm:websphere_application_server:6.0.2.29", "cpe:/a:ibm:websphere_application_server:6.0.2.3", "cpe:/a:ibm:websphere_application_server:6.1.0.45", "cpe:/a:ibm:websphere_application_server:6.1.0.7", "cpe:/a:ibm:websphere_application_server:6.1.0.37", "cpe:/a:ibm:websphere_application_server:6.0.2.1", "cpe:/a:ibm:websphere_application_server:6.0.2.28", "cpe:/a:ibm:websphere_application_server:6.0.2.22", "cpe:/a:ibm:websphere_application_server:6.1.0.47", "cpe:/a:ibm:websphere_application_server:6.1.0.1", "cpe:/a:ibm:websphere_application_server:6.0.2.24", "cpe:/a:ibm:websphere_application_server:6.1.0.41", "cpe:/a:ibm:websphere_application_server:6.0.2.43", "cpe:/a:ibm:websphere_application_server:6.0.2.35", "cpe:/a:ibm:websphere_application_server:6.1.0.11", "cpe:/a:ibm:websphere_application_server:6.1.0.21", "cpe:/a:ibm:websphere_application_server:6.1.0.13", "cpe:/a:ibm:websphere_application_server:6.1.0.27", "cpe:/a:ibm:websphere_application_server:6.0.2", "cpe:/a:ibm:websphere_application_server:6.1.0.14", "cpe:/a:ibm:websphere_application_server:6.0.2.6", "cpe:/a:ibm:websphere_application_server:6.1.0.9", "cpe:/a:ibm:websphere_application_server:6.1.0.31", "cpe:/a:ibm:websphere_application_server:6.1.0.33", "cpe:/a:ibm:websphere_application_server:6.1.0.12", "cpe:/a:ibm:websphere_application_server:6.0.2.27", "cpe:/a:ibm:websphere_application_server:6.1.0.0", "cpe:/a:ibm:websphere_application_server:6.1.0.23", "cpe:/a:ibm:websphere_application_server:6.0.2.11", "cpe:/a:ibm:websphere_application_server:6.1.0.19", "cpe:/a:ibm:websphere_application_server:6.0.2.33", "cpe:/a:ibm:websphere_application_server:6.1.0.15", "cpe:/a:ibm:websphere_application_server:6.0.2.23", "cpe:/a:ibm:websphere_application_server:6.1.0.17", "cpe:/a:ibm:websphere_application_server:6.0.2.9"], "affectedSoftware": [{"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.17"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.33"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.5"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.3"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.4"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.37"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.41"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.24"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.11"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.9"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.2"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.32"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.1"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.30"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.31"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.19"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.17"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.31"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.7"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.7"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.27"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.25"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.23"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.39"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.15"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.27"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.19"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.39"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.35"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.35"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.12"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.13"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.2"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.45"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.29"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.13"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.23"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.0"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.11"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.3"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.5"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.21"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.22"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.6"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.9"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.15"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.14"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.41"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.25"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.29"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.43"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.37"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.47"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.28"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.1.0.43"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.33"}, {"cpeName": "ibm:websphere_application_server", "name": "ibm websphere application server", "operator": "eq", "version": "6.0.2.1"}], "cvss2": {"cvssV2": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:ibm:websphere_application_server:6.0.2.3:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.31:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.41:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.25:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.23:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.4:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.31:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.33:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.1:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.9:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.29:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.7:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.19:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.0:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.12:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.15:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.2:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.35:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.33:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.14:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.9:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.23:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.29:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.11:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.43:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.25:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.22:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.43:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.5:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.3:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.19:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.5:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.24:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.15:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.17:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.21:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.27:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.1:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.32:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.11:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.47:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.30:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.27:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.39:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.2:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.6:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.37:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.7:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.13:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.37:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.41:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.13:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.39:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.17:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.1.0.45:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.35:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:websphere_application_server:6.0.2.28:*:*:*:*:*:*:*"], "cwe": ["CWE-399"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.9:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.23:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.45:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.39:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.47:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.7:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.29:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.0:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.37:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.33:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.15:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.11:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.31:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.21:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.19:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.27:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.17:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.43:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.12:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.13:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.5:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.41:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.25:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.14:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.1.0.35:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}, {"cpe_match": [{"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.11:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.6:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.24:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.7:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.35:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.13:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.33:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.30:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.37:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.1:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.19:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.15:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.9:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.3:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.31:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.32:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.4:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.27:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.39:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.23:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.22:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.25:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.29:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.28:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.17:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.43:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.41:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:ibm:websphere_application_server:6.0.2.5:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}}

{"openvas": [{"lastseen": "2019-05-29T18:35:33", "bulletinFamily": "scanner", "cvelist": ["CVE-2014-0964"], "description": "This host is installed with IBM Websphere\n application server and is prone to denial of service vulnerability.", "modified": "2019-02-21T00:00:00", "published": "2016-01-19T00:00:00", "id": "OPENVAS:1361412562310806827", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310806827", "type": "openvas", "title": "IBM Websphere Application Server Denial Of Service Vulnerability 01 Jan16", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ibm_websphere_dos_vuln01_jan16.nasl 13803 2019-02-21 08:24:24Z cfischer $\n#\n# IBM Websphere Application Server Denial Of Service Vulnerability 01 Jan16\n#\n# Authors:\n# Kashinath T <tkashinath@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2016 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:ibm:websphere_application_server\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.806827\");\n script_version(\"$Revision: 13803 $\");\n script_cve_id(\"CVE-2014-0964\");\n script_bugtraq_id(67322);\n script_tag(name:\"cvss_base\", value:\"7.1\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:N/A:C\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-02-21 09:24:24 +0100 (Thu, 21 Feb 2019) $\");\n script_tag(name:\"creation_date\", value:\"2016-01-19 13:15:39 +0530 (Tue, 19 Jan 2016)\");\n script_tag(name:\"qod_type\", value:\"remote_banner_unreliable\");\n script_name(\"IBM Websphere Application Server Denial Of Service Vulnerability 01 Jan16\");\n\n script_tag(name:\"summary\", value:\"This host is installed with IBM Websphere\n application server and is prone to denial of service vulnerability.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The flaw is due to when running the\n Heartbleed scanning tools or if sending specially-crafted Heartbeat\n messages.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow a remote\n attacker to cause a denial of service via crafted TLS traffic.\");\n\n script_tag(name:\"affected\", value:\"IBM WebSphere Application Server (WAS)\n 6.1.0.0 through 6.1.0.47 and 6.0.2.0 through 6.0.2.43\");\n\n script_tag(name:\"solution\", value:\"Apply Interim Fix PI16981 from the vendor\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_xref(name:\"URL\", value:\"http://www.scaprepo.com/view.jsp?id=CVE-2014-0964\");\n script_xref(name:\"URL\", value:\"http://www-304.ibm.com/support/docview.wss?uid=swg21673808\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2016 Greenbone Networks GmbH\");\n script_family(\"Denial of Service\");\n script_dependencies(\"gb_ibm_websphere_detect.nasl\");\n script_mandatory_keys(\"ibm_websphere_application_server/installed\");\n\n script_xref(name:\"URL\", value:\"http://www-01.ibm.com/support/docview.wss?uid=swg21671835\");\n\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!wasVer = get_app_version(cpe:CPE, nofork:TRUE))\n exit(0);\n\nif(version_in_range(version:wasVer, test_version:\"6.1\", test_version2:\"6.1.0.47\"))\n{\n fix = \"Apply Interim Fix PI16981\";\n VULN = TRUE;\n}\n\nelse if(version_in_range(version:wasVer, test_version:\"6.0.2.0\", test_version2:\"6.0.2.43\"))\n{\n fix = \"Apply Interim Fix PI17128\";\n VULN = TRUE;\n}\n\nif(VULN)\n{\n report = report_fixed_ver(installed_version:wasVer, fixed_version:fix);\n security_message(port:0, data:report);\n exit(0);\n}\n\nexit(99);", "cvss": {"score": 7.1, "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:C"}}]}