IBM HTTP Server 6.0 <= (FP43) / 6.1 <= (FP47) / 7.0 < (FP39) / 8.0 < (FP11) / 8.5 < (FP7) Named Pipe DoS

Medium Nessus Plugin ID 86019


The remote IBM HTTP Server is affected by multiple vulnerabilities.


The IBM HTTP Server running on the remote host is version 6.0 prior to or equal to, 6.1 prior to or equal to, 7.0 prior to, 8.0 prior to, or 8.5 prior to It is, therefore, affected by a flaw in the Apache Portable Runtime (APR) that is triggered when an APR application is using APR named pipe support on Windows. A local attacker can exploit this to conduct a pipe squatting attack from a local process.


Apply IBM 7.0 Fix Pack 39 ( / 8.0 Fix Pack 11 ( / 8.5 Fix Pack 7 ( or later. Alternatively, apply the Interim Fixes as recommended in the vendor advisory.

In the case of the 6.0 branch, apply IBM 6.0 Fix Pack 43 ( and then apply Interim Fix PI39833.

In the case of the 6.1 branch, apply IBM 6.1 Fix Pack 47 ( and then apply Interim Fixes PI39833.

See Also

Plugin Details

Severity: Medium

ID: 86019

File Name: websphere_cve-2015-1829.nasl

Version: $Revision: 1.2 $

Type: remote

Family: Web Servers

Published: 2015/09/18

Modified: 2015/09/21

Dependencies: 57034

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:ibm:websphere_application_server, cpe:/a:ibm:http_server

Required KB Items: www/WebSphere, Settings/ParanoidReport

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2015/09/11

Vulnerability Publication Date: 2015/04/29

Reference Information

CVE: CVE-2015-1829

BID: 75164

OSVDB: 121515