IBM WebSphere HTTP Request Header Remote Overflow

medium Nessus Plugin ID 11181

Synopsis

The remote service is vulnerable to denial of service attack.

Description

It was possible to kill the WebSphere server by sending an invalid request for a .jsp with a too long Host: header.

An attacker may exploit this vulnerability to make your web server crash continually.

Solution

Upgrade to IBM Websphere Application Server 4.0.4 or later.

See Also

https://marc.info/?l=bugtraq&m=103244572803950&w=2

Plugin Details

Severity: Medium

ID: 11181

File Name: websphere_too_long_header.nasl

Version: 1.28

Type: remote

Family: Web Servers

Published: 12/2/2002

Updated: 4/11/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.3

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/a:ibm:websphere_application_server

Required KB Items: www/ibm-http

Exploit Ease: No known exploits are available

Patch Publication Date: 9/30/2002

Vulnerability Publication Date: 9/19/2002

Reference Information

CVE: CVE-2002-1153

BID: 5749