Websphere Application Server@6.0.2.25 Security Vulnerabilities and Issues — Websphere Application Server@6.0.2.25 CVE List

Lucene search

IbmWebsphere Application Server6.0.2.25

3 matches found

CVE•added 2008/10/22 6:0 p.m.•48 views

CVE-2008-4678

The HTTP_Request_Parser method in the HTTP Transport component in IBM WebSphere Application Server (WAS) 6.0.2 before 6.0.2.31 allows remote attackers to cause a denial of service (controller 0C4 abend and application hang) via a long HTTP Host header, related to "storage overlay" on the stack and ...

7.8CVSS6.4AI score0.01639EPSS

CVE•added 2008/01/23 2:0 a.m.•37 views

CVE-2008-0389

Unspecified vulnerability in the serveServletsByClassnameEnabled feature in IBM WebSphere Application Server (WAS) 6.0 through 6.0.2.25, 6.1 through 6.1.0.14, and 5.1.1.x before 5.1.1.18 has unknown impact and attack vectors.

10CVSS6.4AI score0.01377EPSS

CVE•added 2008/10/22 6:0 p.m.•34 views

CVE-2008-4679

The Web Services Security component in IBM WebSphere Application Server (WAS) 6.0.2 before 6.0.2.31 and 6.1 before 6.1.0.19, when Certificate Store Collections is configured to use Certificate Revocation Lists (CRL), does not call the setRevocationEnabled method on the PKIXBuilderParameters object,...

6.8CVSS6.4AI score0.00302EPSS