Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4283

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-4283
Last Modified 17 Jun 2009 12:00:00
Published 10 Feb 2009 05:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4283

Summary

CRLF injection vulnerability in the WebContainer component in IBM WebSphere Application Server (WAS) 5.1.1.19 and earlier 5.1.x versions allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

Vulnerable Systems

Application

  • Ibm Websphere Application Server 5.0

  • Ibm Websphere Application Server 5.0.0

  • Ibm Websphere Application Server 5.0.1

  • Ibm Websphere Application Server 5.0.2

  • Ibm Websphere Application Server 5.0.2.1

  • Ibm Websphere Application Server 5.0.2.10

  • Ibm Websphere Application Server 5.0.2.11

  • Ibm Websphere Application Server 5.0.2.12

  • Ibm Websphere Application Server 5.0.2.13

  • Ibm Websphere Application Server 5.0.2.14

  • Ibm Websphere Application Server 5.0.2.15

  • Ibm Websphere Application Server 5.0.2.16

  • Ibm Websphere Application Server 5.0.2.2

  • Ibm Websphere Application Server 5.0.2.3

  • Ibm Websphere Application Server 5.0.2.4

  • Ibm Websphere Application Server 5.0.2.5

  • Ibm Websphere Application Server 5.0.2.6

  • Ibm Websphere Application Server 5.0.2.7

  • Ibm Websphere Application Server 5.0.2.8

  • Ibm Websphere Application Server 5.0.2.9

  • Ibm Websphere Application Server 5.1.0

  • Ibm Websphere Application Server 5.1.0.2

  • Ibm Websphere Application Server 5.1.0.3

  • Ibm Websphere Application Server 5.1.0.4

  • Ibm Websphere Application Server 5.1.0.5

  • Ibm Websphere Application Server 5.1.1

  • Ibm Websphere Application Server 5.1.1.1

  • Ibm Websphere Application Server 5.1.1.10

  • Ibm Websphere Application Server 5.1.1.11

  • Ibm Websphere Application Server 5.1.1.12

  • Ibm Websphere Application Server 5.1.1.13

  • Ibm Websphere Application Server 5.1.1.14

  • Ibm Websphere Application Server 5.1.1.15

  • Ibm Websphere Application Server 5.1.1.16

  • Ibm Websphere Application Server 5.1.1.17

  • Ibm Websphere Application Server 5.1.1.18

  • Ibm Websphere Application Server 5.1.1.19

  • Ibm Websphere Application Server 5.1.1.2

  • Ibm Websphere Application Server 5.1.1.3

  • Ibm Websphere Application Server 5.1.1.4

  • Ibm Websphere Application Server 5.1.1.5

  • Ibm Websphere Application Server 5.1.1.6

  • Ibm Websphere Application Server 5.1.1.7

  • Ibm Websphere Application Server 5.1.1.8

  • Ibm Websphere Application Server 5.1.1.9


References

XF - websphere-webcontainer-response-splitting(47199)

BID - 33700

AIXAPAR - SE35864


Last Updated: 27 May 2016 10:48:26