Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0120

Overview

Vulnerability Score 7.8 7.8
CVE Id CVE-2009-0120
Last Modified 07 Mar 2011 10:17:55
Published 14 Jan 2009 07:30:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-0120

Summary

The IBM WebSphere DataPower XML Security Gateway XS40 with firmware 3.6.1.5 allows remote attackers to cause a denial of service (device reboot) by sending data over an established SSL connection, as demonstrated by the abc\r\n\r\n string data.

Vulnerable Systems


References

VUPEN - ADV-2009-0111

SECTRACK - 1021547

BID - 33169

BUGTRAQ - 20090108 [IBM Datapower XS40] Denial of Service

SREASON - 4911


Last Updated: 27 May 2016 10:50:07