exploits , vulnerabilities , articles , IBM WebSphere Application Server WebContainer HTTP Request Header Security Weakness

Title	IBM WebSphere Application Server WebContainer HTTP Request Header Security Weakness
Published	2007-11-15-12:00AM
Updated	2008-03-13-03:21PM
Class	Design Error
CVE	CVE-2007-5944
Remote	Yes
Local	No
Credit	The vendor disclosed this issue.
Vulnerable	IBM Websphere Application Server 5.1.1 .9 IBM Websphere Application Server 5.1.1 .8 IBM Websphere Application Server 5.1.1 .7 IBM Websphere Application Server 5.1.1 .6 IBM Websphere Application Server 5.1.1 .5 IBM Websphere Application Server 5.1.1 .4 IBM Websphere Application Server 5.1.1 .16 IBM Websphere Application Server 5.1.1 .15 IBM Websphere Application Server 5.1.1 .14 IBM Websphere Application Server 5.1.1 .12 IBM Websphere Application Server 5.1.1 .10 IBM Websphere Application Server 5.1.1 IBM Websphere Application Server 5.1.1
Not Vulnerable
Code	Attackers can use Flash to exploit this issue.The following proof-of-concept code was released for a similar weakness covered in BID 19661 (Apache HTTP Server Arbitrary HTTP Request Headers Security Weakness). The code has not been tested against IBM WebSphere Application Server but will likely work to demonstrate the issue. /data/vulnerabilities/exploits/19661.html
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-17 Mozilla Firefox and SeaMonkey Theora Video Library Remote Integer Overflow Vulnerability
2009-12-17 Mozilla Firefox and Sea Monkey Insecure Protocol Location Bar Spoofing Vulnerability
2009-12-17 Mozilla Firefox and Sea Monkey Content Injection Spoofing Vulnerability
2009-12-17 Mozilla Firefox/SeaMonkey GeckoActiveXObject Exception Message COM Object Enumeration Vulnerability
2009-12-16 ZABBIX Denial Of Service and SQL Injection Vulnerabilities
2009-12-16 IBM WebSphere Application Server JNDI Remote Information Disclosure Vulnerability
2009-12-16 Horde Application Framework Administration Interface Cross-Site Scripting Vulnerability
2009-12-16 Mozilla Firefox and SeaMonkey MFSA 2009-65 through -71 Multiple Vulnerabilities
2009-12-16 Merkaartor Insecure Temporary File Creation Vulnerability
2009-12-15 TYPO3 Watchdog (aba_watchdog) Unspecified Information Disclosure Vulnerability

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Thu, 17 Dec 2009 07:52:25 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
kashmiri+g britney sp 200 /compo shop592354 Www.anemal 3.2.5 cnet sexy fucke http:/www. WWW.TELUGU Snitz Foru sage netscape 89.KOM www.2paim. vuln/explo ddl arbisex anargali s t82t purnhup se Imapd 2004 sexedenfer maxcpm.inf sex indian WWW.Vidio Wap berry. vnc 4.1 www.zhaiji Old woman all cartoo GET /galle Oracle+Peo SVN maxcpm.inf sexy aishw Www.sex24. perl irc b www.zhaiji caipiaowan Free top g Photokorn pone Nudeashwar 200+%252Fc www.cn-yes aflam+*** PHP-Nuke mambo+Remo WWW.PLAYBO