CVE-2009-0120

2009-01-1500:00:00

mitre

www.cve.org

6.5 Medium

AI Score

Confidence

High

0.02 Low

EPSS

Percentile

88.9%

JSON

The IBM WebSphere DataPower XML Security Gateway XS40 with firmware 3.6.1.5 allows remote attackers to cause a denial of service (device reboot) by sending data over an established SSL connection, as demonstrated by the abc\r\n\r\n string data.

References

securityreason.com/securityalert/4911

www.securityfocus.com/archive/1/499870/100/0/threaded

www.securityfocus.com/bid/33169

www.securitytracker.com/id?1021547

www.vupen.com/english/advisories/2009/0111