15 matches found
EUVD-2009-0129
Malware in sbrugna...
IBM WebSphere DataPower XML Security Gateway 3.6.1 XS40 Remote Denial Of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/33169/info IBM WebSphere DataPower XML Security Gateway XS40 is prone to a remote denial-of-service vulnerability because it fails to handle user-supplied input. Remote attackers can exploit this issue to cause the device...
CVE-2010-1612
CVE-2010-1612 affects IBM WebSphere DataPower XML Accelerator XA35, Low Latency Appliance XM70, Integration Appliance XI50, B2B Appliance XB60, and XML Security Gateway XS40 SOA Appliances prior to 3.8.0.0. The issue arises when using a QLOGIC Ethernet interface and involves processing malformed ...
IBM Datapower XS40畸形ICMP报文拒绝服务漏洞
Bugraq ID: 37952 IBM Datapower XS40是一款安全网关解决方案。 IBM Datapower XS40设备不正确处理ICMP畸形报文,远程攻击者可以利用漏洞使设备挂起,造成拒绝服务攻击。 发送IP目的地址为0.0.0.0的ICMP报文到QLOGIC接口,可使接口变慢,多次发送此类报文数据可导致服务停止响应。 IBM Datapower XS40 3.7.2.1 用户可参考如下安全公告获得补丁信息: http://www-01.ibm.com/support/docview.wss?rs=2362&uid=swg1IC61364...
IBM DataPower XS40 security gateway DoS
ICMP packet with destination address 0.0.0.0 causes device to hang...
[IBM Datapower XS40] Denial of Service
It appears it is possible to disable the IBM DataPower XS40 Security Gateway device by sending a malformed packet to the network interface. The device will hang up itself without being able to recover from it no auto-reboot. Tested vulnerable firmware is 3.7.2.1 Issue fixed according to vendor in...
Design/Logic Flaw
The IBM WebSphere DataPower XML Security Gateway XS40 with firmware 3.6.1.5 allows remote attackers to cause a denial of service device reboot by sending data over an established SSL connection, as demonstrated by the abc\r\n\r\n string data...
CVE-2009-0120
The IBM WebSphere DataPower XML Security Gateway XS40 with firmware 3.6.1.5 allows remote attackers to cause a denial of service device reboot by sending data over an established SSL connection, as demonstrated by the abc\r\n\r\n string data...
CVE-2009-0120
The IBM WebSphere DataPower XML Security Gateway XS40 with firmware 3.6.1.5 allows remote attackers to cause a denial of service device reboot by sending data over an established SSL connection, as demonstrated by the abc\r\n\r\n string data...
CVE-2009-0120
The CVE-2009-0120 entry affects IBM WebSphere DataPower XML Security Gateway XS40 firmware 3.6.1.5. It allows remote attackers to cause a denial of service (device reboot) by sending data over an established SSL connection (demonstrated using the string abc\r\n\r\n). The NVD entry lists a high im...
[IBM Datapower XS40] Denial of Service
It appears it is possible to crash the IBM DataPower XS40 Security Gateway device by sending a simple random? string to it, over an established SSL-connection. The device reboots as a response to the input. Tested vulnerable firmware is 3.6.1.5 Issue fixed as tested in 3.6.1.12 Tested as follows...
IBM DataPower XS40 Security Gateway DoS
Crash on malformed SSL data...
IBM WebSphere DataPower XML Security Gateway XS40远程拒绝服务漏洞
BUGTRAQ ID: 33169 CNCAN ID:CNCAN-2009010903 IBM WebSphere DataPower XML Security Gateway XS40是一款XML安全网关。 通过已经建立的SSL连接,发送简单的random?字符串给IBM DataPower XS40安全网关设备,可导致设备重启,造成拒绝服务攻击。 IBM WebSphere DataPower XML Security Gateway XS40 3.6.1 .5 厂商解决方案 目前没有解决方案提供:...
IBM DataPower XS40 Denial Of Service
It appears it is possible to crash the IBM DataPower XS40 Security Gateway device by sending a simple random? string to it, over an established SSL-connection. The device reboots as a response to the input. Tested vulnerable firmware is 3.6.1.5 Issue fixed as tested in 3.6.1.12 Tested as follows...
IBM Websphere DataPower XML Security Gateway 3.6.1 XS40 - Remote Denial of Service
IBM Websphere DataPower XML Security Gateway 3.6.1 XS40 - Remote Denial of Service source: https://www.securityfocus.com/bid/33169/info IBM WebSphere DataPower XML Security Gateway XS40 is prone to a remote denial-of-service vulnerability because it fails to handle user-supplied input. Remote...