CVE-2009-0433

EUVD-2009-0437
Unspecified vulnerability in IBM WebSphere Application Server (WAS) 5.1.x before 5.1.1.19, 6.0.x before 6.0.2.29, and 6.1.x before 6.1.0.19, when Web Server plug-in content buffering is enabled, allows attackers to cause a denial of service (daemon crash) via unknown vectors, related to a mishandling of client read failures in which clients receive many 500 HTTP error responses and backend servers are incorrectly labeled as down.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
2.6 UNKNOWN
NETWORK
HIGH
AV:N/AC:H/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 71%
Affected Products (NVD)
VendorProductVersion
ibmwebsphere_application_server
5.1.0
ibmwebsphere_application_server
5.1.0.2
ibmwebsphere_application_server
5.1.0.3
ibmwebsphere_application_server
5.1.0.4
ibmwebsphere_application_server
5.1.0.5
ibmwebsphere_application_server
5.1.1
ibmwebsphere_application_server
5.1.1.1
ibmwebsphere_application_server
5.1.1.10
ibmwebsphere_application_server
5.1.1.11
ibmwebsphere_application_server
5.1.1.12
ibmwebsphere_application_server
5.1.1.13
ibmwebsphere_application_server
5.1.1.14
ibmwebsphere_application_server
5.1.1.15
ibmwebsphere_application_server
5.1.1.16
ibmwebsphere_application_server
5.1.1.17
ibmwebsphere_application_server
5.1.1.18
ibmwebsphere_application_server
5.1.1.19
ibmwebsphere_application_server
6.0
ibmwebsphere_application_server
6.0.0.1
ibmwebsphere_application_server
6.0.0.2
ibmwebsphere_application_server
6.0.0.3
ibmwebsphere_application_server
6.0.1
ibmwebsphere_application_server
6.0.1.1
ibmwebsphere_application_server
6.0.1.2
ibmwebsphere_application_server
6.0.1.3
ibmwebsphere_application_server
6.0.1.5
ibmwebsphere_application_server
6.0.1.7
ibmwebsphere_application_server
6.0.1.9
ibmwebsphere_application_server
6.0.1.11
ibmwebsphere_application_server
6.0.1.13
ibmwebsphere_application_server
6.0.1.15
ibmwebsphere_application_server
6.0.1.17
ibmwebsphere_application_server
6.0.2
ibmwebsphere_application_server
6.0.2.1
ibmwebsphere_application_server
6.0.2.2
ibmwebsphere_application_server
6.0.2.3
ibmwebsphere_application_server
6.0.2.4
ibmwebsphere_application_server
6.0.2.5
ibmwebsphere_application_server
6.0.2.6
ibmwebsphere_application_server
6.0.2.7
ibmwebsphere_application_server
6.0.2.9
ibmwebsphere_application_server
6.0.2.11
ibmwebsphere_application_server
6.0.2.13
ibmwebsphere_application_server
6.0.2.15
ibmwebsphere_application_server
6.0.2.17
ibmwebsphere_application_server
6.0.2.19
ibmwebsphere_application_server
6.0.2.22
ibmwebsphere_application_server
6.0.2.23
ibmwebsphere_application_server
6.0.2.24
ibmwebsphere_application_server
6.0.2.25
ibmwebsphere_application_server
6.0.2.27
ibmwebsphere_application_server
6.0.2.28
ibmwebsphere_application_server
6.1
ibmwebsphere_application_server
6.1.0
ibmwebsphere_application_server
6.1.0.0
ibmwebsphere_application_server
6.1.0.1
ibmwebsphere_application_server
6.1.0.2
ibmwebsphere_application_server
6.1.0.3
ibmwebsphere_application_server
6.1.0.4
ibmwebsphere_application_server
6.1.0.5
ibmwebsphere_application_server
6.1.0.6
ibmwebsphere_application_server
6.1.0.7
ibmwebsphere_application_server
6.1.0.8
ibmwebsphere_application_server
6.1.0.9
ibmwebsphere_application_server
6.1.0.10
ibmwebsphere_application_server
6.1.0.11
ibmwebsphere_application_server
6.1.0.12
ibmwebsphere_application_server
6.1.0.13
ibmwebsphere_application_server
6.1.0.14
ibmwebsphere_application_server
6.1.0.15
ibmwebsphere_application_server
6.1.0.16
ibmwebsphere_application_server
6.1.0.17
ibmwebsphere_application_server
6.1.0.18
𝑥
= Vulnerable software versions
References
http://www-01.ibm.com/support/docview.wss?uid=swg1PK67161
http://www-01.ibm.com/support/docview.wss?uid=swg27006879
http://www-01.ibm.com/support/docview.wss?uid=swg27007033
http://www-01.ibm.com/support/docview.wss?uid=swg27007951
http://www-1.ibm.com/support/docview.wss?uid=swg1PK63499
http://www.securityfocus.com/bid/33700
https://exchange.xforce.ibmcloud.com/vulnerabilities/48523
http://www-01.ibm.com/support/docview.wss?uid=swg1PK67161
http://www-01.ibm.com/support/docview.wss?uid=swg27006879
http://www-01.ibm.com/support/docview.wss?uid=swg27007033
http://www-01.ibm.com/support/docview.wss?uid=swg27007951
http://www-1.ibm.com/support/docview.wss?uid=swg1PK63499
http://www.securityfocus.com/bid/33700
https://exchange.xforce.ibmcloud.com/vulnerabilities/48523