The IBM WebSphere Application Server running on the remote host is version 6.1.0.x through 6.1.0.47, 7.0.0.x prior to 7.0.0.39, 8.0.0.x prior to 8.0.0.12, or 8.5.0.x prior to 8.5.5.8. It is, therefore, affected by an HTTP response splitting vulnerability. An unauthenticated, remote attacker can exploit this, by using a specially crafted URL to cause the server to return a split response once the URL is clicked. The attacker could then perform further attacks.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

リモートホストで実行中のIBM WebSphere Application Serverは、6.1.0.x～6.1.0.47、7.0.0.39より前の7.0.0.x、8.0.0.12より前の8.0.0.x、または8.5.5.8より前の8.5.0.xです。したがって、HTTP応答分割の脆弱性の影響を受けます。認証されていないリモートの攻撃者がこれを悪用し、特別に細工されたURLを使用して、URLがクリックされたときにサーバーから分割応答を返させる可能性があります。攻撃者はさらに攻撃を仕掛ける可能性があります。

Nessusはこの問題をテストしておらず、代わりにアプリケーションの自己報告されたバージョン番号にのみ依存しています。

远程主机上运行的 IBM WebSphere Application Server 版本为 6.1.0.x 到 6.1.0.47、低于 7.0.0.39 的 7.0.0.x、低于 8.0.0.12 的 8.0.0.x 或低于 8.5.5.8 的 8.5.0.x。因此，该服务器会受到 HTTP 响应拆分漏洞的影响。未经身份验证的远程攻击者会利用此漏洞，通过使用特别构建的 URL 致使服务器在单击该 URL 时返回拆分响应。然后，攻击者可能会执行进一步攻击。

请注意，Nessus 尚未测试此问题，而是只依靠应用程序自我报告的版本号来判断。

遠端主機上執行的 IBM WebSphere Application Server 為 6.1.0.x 到 6.1.0.47 版、7.0.0.39 之前的 7.0.0.x 版、8.0.0.12 之前的 8.0.0.x 版或 8.5.5.8 之前的 8.5.0.x 版。因此，會受到 HTTP 回應分割弱點影響。未經驗證的遠端攻擊者可使用特製的 URL 來惡意利用此弱點，當使用者按下此 URL 時，伺服器會返回分割後的回應。攻擊者接著可發動進一步攻擊。

請注意，Nessus 並未測試此問題，而是僅依據應用程式自我報告的版本號碼作出判斷。

The remote host appears to be running IBM WebSphere Application Server 8.5 prior to 8.5.5.8.  Such versions are potentially affected by multiple issues :

 - A flaw exists that is triggered as CRLF (Carriage Return and Line Feed) character sequences are not properly sanitized before being included in HTTP responses.  This allows a remote attacker to inject additional headers into responses to conduct HTTP response splitting attacks.
 - An unspecified flaw exists in the edge component caching proxy that could cause weaker than intended encryption, which may potentially allow an authenticated remote attacker to more easily decrypt information. 

The remote host appears to be running IBM WebSphere Application Server 8.0 prior to 8.0.0.12.  Such versions are potentially affected by multiple issues :

 - A flaw exists that is triggered as CRLF (Carriage Return and Line Feed) character sequences are not properly sanitized before being included in HTTP responses.  This allows a remote attacker to inject additional headers into responses to conduct HTTP response splitting attacks.
 - An unspecified flaw exists in the edge component caching proxy that could cause weaker than intended encryption, which may potentially allow an authenticated remote attacker to more easily decrypt information.
 - A flaw exists allowing a reflected cross-site scripting (XSS) vulnerability due to a failure to properly validate output from the OAuth provider before returning it to users.  An authenticated, remote attacker can exploit this, via a specially crafted URL, to execute arbitrary script code in a user's browser session within the security context of the hosting website.
 - A flaw exists that is triggered when handling a connect call that is interrupted.  This may allow a remote attacker to crash the plug-in component and cause a partial denial of service.
 - An overflow condition exists that is triggered as certain input is not properly validated.  This may allow an authenticated remote attacker to cause a buffer overflow, potentially allowing them to bypass security restrictions and disclose sensitive information.

The remote host appears to be running IBM WebSphere Application Server 7.0 prior to 7.0.0.39. Such versions are potentially affected by multiple issues :

 - A flaw exists that is triggered as deployment descriptor security constraints are combined with 'ServletSecurity' annotations on a servlet. This may allow a remote attacker to gain elevated privileges. (CVE-2014-8890)
 - A security feature bypass vulnerability, known as FREAK (Factoring attack on RSA-EXPORT Keys), exists in the IBM Global Security Kit (GSKit) due to the support of weak EXPORT_RSA cipher suites with keys less than or equal to 512 bits.  A man-in-the-middle (MitM) attacker may be able to downgrade the SSL/TLS connection to use EXPORT_RSA cipher suites which can be factored in a short amount of time, allowing the attacker to intercept and decrypt the traffic. (CVE-2015-0138)
 - An information disclosure vulnerability exists due to a flaw in the Bleichenbacher countermeasure implementation in Apache WSS4J.  A remote attacker can exploit this, via a crafted message, to determine where an encryption failure took place, allowing the attacker to gain access to the plaintext symmetric key. (CVE-2015-0226)
 - An XML External Entity (XXE) vulnerability exists due to an incorrectly configured XML parser that accepts XML external entities from an untrusted source.  A remote attacker can exploit this, via specially crafted XML data, to gain access to arbitrary files. (CVE-2015-0250)
 - A privilege escalation vulnerability exists due to a flaw that occurs in 'full' profile and 'liberty' profile when using an OAuth grant password.  A remote attacker can exploit this to gain elevated privileges. (CVE-2015-1885)
 - A privilege escalation vulnerability exists due to incorrect settings in the 'serveServletsbyClassname' functionality.  A remote attacker can exploit this to gain elevated privileges. (CVE-2015-1927)
 - An information disclosure vulnerability exists that allows an unauthenticated, remote attacker to identify the proxy server software by reading the HTTP 'Via' header. (CVE-2015-1932)
 - An unspecified flaw exists in the administrative console that allows a remote attacker, via the 'JSESSIONID' parameter, to hijack a user's session. (CVE-2015-1936)
 - A privilege escalation vulnerability exists due to an unspecified flaw that occurs when handling user roles.  A local attacker can exploit this to gain elevated privileges. (CVE-2015-1946)
 - A flaw exists that is triggered as CRLF (Carriage Return and Line Feed) character sequences are not properly sanitized before being included in HTTP responses.  This allows a remote attacker to inject additional headers into responses to conduct HTTP response splitting attacks. (CVE-2015-2017)
 - A security feature bypass vulnerability exists, known as Bar Mitzvah, due to improper combination of state data with key data by the RC4 cipher algorithm during the initialization phase.  A MitM attacker can exploit this, via a brute-force attack using LSB values, to decrypt the traffic. (CVE-2015-2808)
 - An unspecified flaw exists that allows an unauthenticated, remote attacker to spoof servlets or disclose sensitive information. (CVE-2015-4938)
 - An unspecified exists flaw in the 'Management' port. This may allow a remote attacker to execute arbitrary code. No further details have been provided by the vendor. (CVE-2015-1920)

ID	Name	Product	Family	Published	Updated	Severity
142224	IBM WebSphere Application Server 6.1.0.x <= 6.1.0.47 / 7.0.0.x < 7.0.0.39 / 8.0.0.x < 8.0.0.12 / 8.5.x < 8.5.5.8 HTTP Response Splitting (CVE-2015-2017)	Nessus	Web Servers	11/3/2020	10/23/2024	medium
142224	IBM WebSphere Application Server 6.1.0.x< 6.1.0.47/7.0.0.x < 7.0.0.39/8.0.0.x < 8.0.0.12/8.5.x < 8.5.5.8のHTTP応答分割 (CVE-2015-2017)	Nessus	Web Servers	11/3/2020	10/23/2024	medium
142224	IBM WebSphere Application Server 6.1.0.x <= 6.1.0.47 / 7.0.0.x < 7.0.0.39 / 8.0.0.x < 8.0.0.12 / 8.5.x < 8.5.5.8 HTTP 响应拆分 (CVE-2015-2017)	Nessus	Web Servers	11/3/2020	10/23/2024	medium
142224	IBM WebSphere Application Server 6.1.0.x <= 6.1.0.47 / 7.0.0.x < 7.0.0.39 / 8.0.0.x < 8.0.0.12 / 8.5.x < 8.5.5.8 HTTP 回應分割 (CVE-2015-2017)	Nessus	Web Servers	11/3/2020	10/23/2024	medium
9718	IBM WebSphere Application Server 8.5 < 8.5.5.8 Multiple Vulnerabilities	Nessus Network Monitor	Web Servers	10/26/2016	3/6/2019	medium
9714	IBM WebSphere Application Server 8.0 < 8.0.0.12 Multiple Vulnerabilities	Nessus Network Monitor	Web Servers	10/26/2016	3/6/2019	low
9700	IBM WebSphere Application Server 7.0 < 7.0.0.39 Multiple Vulnerabilities (FREAK)	Nessus Network Monitor	Web Servers	10/26/2016	3/6/2019	high

Detections

Analytics

Plugins Search

medium

medium

medium

medium

medium

low

high