4 matches found
CVE-2002-1169
The CVE-2002-1169 entry affects IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x prior to 4.0.1.26. The underlying issue is a malformed HTTP request to helpout.exe that omits the HTTP version number, causing ibmproxy.exe to crash and resulting in a denial of service. Connected sources (Op...
CVE-2002-1168
CVE-2002-1168 describes a cross-site scripting (XSS) vulnerability in IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26. An attacker can force the server to echo a CRLF-containing Location header (%0a%0d) in HTTP responses, allowing script execution in the context of anothe...
CVE-2002-1167
IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x prior to 4.0.1.26 is affected by a cross-site scripting (XSS) vulnerability that allows remote attackers to execute scripts as other users via an HTTP GET request. The connected documents confirm the affected product and method but do not p...
CVE-2004-0684
The CVE-2004-0684 entry concerns WebSphere Edge Server 5.02’s Edge Component Caching Proxy when JunctionRewrite is enabled. A remote attacker can trigger a denial-of-service by sending an HTTP GET request without parameters. The description indicates potential impact to availability but does not ...