Lucene search
IbmCVELIST:CVE-2017-1503HistoryOct 10, 2017 - 9:00 p.m.
CVE-2017-1503
2017-10-1021:00:00
ibm
www.cve.org
6
EPSS
0.001
Percentile
45.7%
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to HTTP response splitting attacks. A remote attacker could exploit this vulnerability using specially-crafted URL to cause the server to return a split response, once the URL is clicked. This would allow the attacker to perform further attacks, such as Web cache poisoning, cross-site scripting, and possibly obtain sensitive information. IBM X-Force ID: 129578.
CNA Affected
[
{
"product": "IBM WebSphere Application Server ",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "7.0, 8.0, 8.5, 9.0"
}
]
}
]Related
ibm
ibm
nessus
nessus
IBM WebSphere Application Server 7.0.0.x < 7.0.0.45 / 8.0.0.x < 8.0.0.14 / 8.5.x < 8.5.5.13 / 9.0.x < 9.0.0.5 HTTP Response Splitting (CVE-2017-1503)
2020-10-27 00:00:00
prion
prion
Cross site scripting
2017-10-10 21:29:00
nvd
nvd
CVE-2017-1503
2017-10-10 21:29:00
cve
cve
CVE-2017-1503
2017-10-10 21:29:00