Back to search
CVE-2008-4678
Published: Oct 22, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
The HTTP_Request_Parser method in the HTTP Transport component in IBM WebSphere Application Server (WAS) 6.0.2 before 6.0.2.31 allows remote attackers to cause a denial of service (controller 0C4 abend and application hang) via a long HTTP Host header, related to "storage overlay" on the stack and a "parse failure."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2008-2871
vdb-entry
x_refsource_VUPEN
http://www-01.ibm.com/support/docview.wss?uid=swg27006876
x_refsource_CONFIRM
32296
third-party-advisory
x_refsource_SECUNIA
31839
vdb-entry
x_refsource_BID
PK69371
vendor-advisory
x_refsource_AIXAPAR
websphere-hostheader-dos(45993)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now