IBM HTTP Server 1.3 - AfpaCacheWebSphereNet.Data Denial of Service

2001-01-08T00:00:00
ID EXPLOITPACK:8008CDBD18D037C7CDE43C5DA8857A2B
Type exploitpack
Reporter Peter Grundl
Modified 2001-01-08T00:00:00

Description

IBM HTTP Server 1.3 - AfpaCacheWebSphereNet.Data Denial of Service

                                        
                                            source: https://www.securityfocus.com/bid/2175/info

IBM HTTP Server contains AfpaCache directive which turns the Fast Response Cache Accelerator function on or off. WebSphere is a series of applications which are built upon IBM HTTP Server.

Both IBM HTTP Server and Websphere are subject to a denial of service. This is caused by exhausting computer resources with malformed HTTP GET requests. A restart of the service is required inorder to gain normal functionality.

GET / HTTP/1.0\r\nuser-agent: 20000xnull\r\n\r\n

This request must be made multiple times before the system will freeze.