Signature Detail
Short Name |
HTTP:WEBSPHERE:SERVER-OF |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
WebSphere Application Server Buffer Overflow |
Release Date |
2005/06/15 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: WebSphere Application Server Buffer Overflow
This signature detects attempts to exploit a known vulnerability against IBM WebSphere Application Server. The WebSphere server does not properly validate user input during the application authentication process. Attackers can provide malicious input to terminate the server process, or inject and execute arbitrary code on the target.
Extended Description
IBM WebSphere Application Server Administrative Console is prone to a buffer overflow vulnerability. This issue is due to a failure of the application in the authentication mechanism. An attacker may exploit this issue to execute arbitrary code with the privileges of the server process. This may facilitate privilege escalation. It should be noted this vulnerability can not be exploited if the 'global security option' is disabled.
Affected Products
- IBM Websphere Application Server 5.0.2
- IBM Websphere Application Server 5.0.2 .1
- IBM Websphere Application Server 5.0.2.10
- IBM Websphere Application Server 5.0.2 .2
- IBM Websphere Application Server 5.0.2 .3
- IBM Websphere Application Server 5.0.2 .4
- IBM Websphere Application Server 5.0.2 .5
- IBM Websphere Application Server 5.0.2 .6
- IBM Websphere Application Server 5.0.2 .7
- IBM Websphere Application Server 5.0.2 .8
- IBM Websphere Application Server 5.0.2 .9
References