ID CVE-2014-0859
Summary The web-server plugin in IBM WebSphere Application Server (WAS) 7.x before 7.0.0.33, 8.x before 8.0.0.9, and 8.5.x before 8.5.5.2, when POST retries are enabled, allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors.
References
Vulnerable Configurations
  • IBM Websphere Application Server 8.0.0.0 - Edition
    cpe:2.3:a:ibm:websphere_application_server:8.0.0.0
  • IBM WebSphere Application Server 8.0.0.1
    cpe:2.3:a:ibm:websphere_application_server:8.0.0.1
  • IBM WebSphere Application Server 8.0.0.2 (Fix Pack 2)
    cpe:2.3:a:ibm:websphere_application_server:8.0.0.2
  • IBM WebSphere Application Server 8.0.0.3 (Fix Pack 3)
    cpe:2.3:a:ibm:websphere_application_server:8.0.0.3
  • IBM WebSphere Application Server 8.0.0.4 (Fix Pack 4)
    cpe:2.3:a:ibm:websphere_application_server:8.0.0.4
  • IBM WebSphere Application Server 8.0.0.5 (FixPack 5)
    cpe:2.3:a:ibm:websphere_application_server:8.0.0.5
  • IBM WebSphere Application Server 8.0.0.6 (Fix Pack 6)
    cpe:2.3:a:ibm:websphere_application_server:8.0.0.6
  • IBM WebSphere Application Server 8.0.0.7 (Fix Pack 7)
    cpe:2.3:a:ibm:websphere_application_server:8.0.0.7
  • IBM WebSphere Application Server 8.0.0.8 (Fix Pack 8)
    cpe:2.3:a:ibm:websphere_application_server:8.0.0.8
  • IBM Websphere Application Server 8.5.0.0 - Edition
    cpe:2.3:a:ibm:websphere_application_server:8.5.0.0
  • IBM WebSphere Application Server 8.5.0.1 (Fix Pack 1)
    cpe:2.3:a:ibm:websphere_application_server:8.5.0.1
  • IBM WebSphere Application Server 8.5.0.2 (Fix Pack 2)
    cpe:2.3:a:ibm:websphere_application_server:8.5.0.2
  • IBM WebSphere Application Server 8.5.5.0
    cpe:2.3:a:ibm:websphere_application_server:8.5.5.0
  • IBM WebSphere Application Server 8.5.5.1
    cpe:2.3:a:ibm:websphere_application_server:8.5.5.1
  • IBM WebSphere Application Server 7.0
    cpe:2.3:a:ibm:websphere_application_server:7.0
  • IBM Websphere Application Server 7.0.0.1 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.1
  • IBM WebSphere Application Server 7.0.0.10 (Fix Pack 10)
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.10
  • IBM Websphere Application Server 7.0.0.11 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.11
  • IBM WebSphere Application Server 7.0.0.12
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.12
  • IBM Websphere Application Server 7.0.0.13 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.13
  • IBM WebSphere Application Server 7.0.0.14 (Fix Pack 14)
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.14
  • IBM Websphere Application Server 7.0.0.15 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.15
  • IBM WebSphere Application Server 7.0.0.16 (Fix Pack 16)
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.16
  • IBM Websphere Application Server 7.0.0.17 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.17
  • IBM WebSphere Application Server 7.0.0.18 (Fix Pack 18)
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.18
  • IBM Websphere Application Server 7.0.0.19 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.19
  • IBM Websphere Application Server 7.0.0.2 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.2
  • IBM Websphere Application Server 7.0.0.21 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.21
  • IBM WebSphere Application Server 7.0.0.22
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.22
  • IBM Websphere Application Server 7.0.0.23 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.23
  • IBM WebSphere Application Server 7.0.0.24
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.24
  • IBM Websphere Application Server 7.0.0.25 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.25
  • IBM Websphere Application Server 7.0.0.27 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.27
  • IBM Websphere Application Server 7.0.0.29 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.29
  • IBM Websphere Application Server 7.0.0.3 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.3
  • IBM Websphere Application Server 7.0.0.31 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.31
  • IBM WebSphere Application Server 7.0.0.4
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.4
  • IBM Websphere Application Server 7.0.0.5 - Edition
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.5
  • IBM WebSphere Application Server 7.0.0.6
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.6
  • IBM WebSphere Application Server 7.0.0.7
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.7
  • IBM WebSphere Application Server 7.0.0.8
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.8
  • IBM WebSphere Application Server 7.0.0.9 (Fix Pack 9)
    cpe:2.3:a:ibm:websphere_application_server:7.0.0.9
CVSS
Base: 5.0 (as of 01-04-2016 - 10:53)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
  • NASL family Web Servers
    NASL id WEBSPHERE_8_0_0_9.NASL
    description IBM WebSphere Application Server 8.0 prior to Fix Pack 9 is running on the remote host. It is, therefore, affected by the following vulnerabilities : - A cross-site scripting flaw exists within the Administration Console, where user input is improperly validated. This could allow a remote attacker, with a specially crafted request, to execute arbitrary script code within the browser / server trust relationship. (CVE-2013-6323, PI04777 and PI04880) - A denial of service flaw exists within the Global Security Kit when handling SSLv2 resumption during the SSL/TLS handshake. This could allow a remote attacker to crash the program. (CVE-2013-6329, PI05309) - A buffer overflow flaw exists in the HTTP server with the mod_dav module when using add-ons. This could allow a remote attacker to cause a buffer overflow and a denial of service. (CVE-2013-6438, PI09345) - A cross-site scripting flaw exists within OAuth where user input is not properly validated. This could allow a remote attacker, with a specially crafted request, to execute arbitrary script code within the browser / server trust relationship. (CVE-2013-6738, PI05661) - A denial of service flaw exists within the Global Security Kit when handling X.509 certificate chain during the initiation of a SSL/TLS connection. A remote attacker, using a malformed certificate chain, could cause the client or server to crash by hanging the Global Security Kit. (CVE-2013-6747, PI09443) - A denial of service flaw exists within the Apache Commons FileUpload when parsing a content-type header for a multipart request. A remote attacker, using a specially crafted request, could crash the program. (CVE-2014-0050, PI12648, PI12926 and PI13162) - A flaw exists in the Elliptic Curve Digital Signature Algorithm implementation which could allow a malicious process to recover ECDSA nonces. (CVE-2014-0076, PI19700) - A denial of service flaw exists in the 'mod_log_config' when logging a cookie with an unassigned value. A remote attacker, using a specially crafted request, can cause the program to crash. (CVE-2014-0098, PI13028) - An information disclosure flaw exists in the 'sun.security.rsa.RSAPadding' with 'PKCS#1' unpadding. This many allow a remote attacker to gain timing information intended to be protected by encryption. (CVE-2014-0453) - A flaw exists with 'com.sun.jndi.dns.DnsClient' related to the randomization of query IDs. This could allow a remote attacker to conduct spoofing attacks. (CVE-2014-0460) - A flaw exists in the Full and Liberty profiles. A remote attacker, using a specially crafted request, could gain access to arbitrary files. (CVE-2014-0823, PI05324) - An information disclosure flaw exists within the Administrative Console. This could allow a network attacker, using a specially crafted request, to gain privileged access. (CVE-2014-0857, PI07808) - A denial of service flaw exists in a web server plugin on servers configured to retry failed POST request. This could allow a remote attacker to crash the application. (CVE-2014-0859, PI08892) - An information disclosure flaw exists within Proxy and ODR servers. This could allow a remote attacker, using a specially crafted request, to gain access to potentially sensitive information. (CVE-2014-0891, PI09786) - A denial of service flaw exists within the IBM Security Access Manager for Web with the Reverse Proxy component. This could allow a remote attacker, using specially crafted TLS traffic, to cause the application on the system to become unresponsive. (CVE-2014-0963, PI17025) - An information disclosure flaw exists when handling SOAP responses. This could allow a remote attacker to potentially gain access to sensitive information. (CVE-2014-0965, PI11434) - An information disclosure flaw exists. A remote attacker, using a specially crafted URL, could gain access to potentially sensitive information. (CVE-2014-3022, PI09594)
    last seen 2019-02-21
    modified 2018-08-06
    plugin id 76995
    published 2014-08-04
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=76995
    title IBM WebSphere Application Server 8.0 < Fix Pack 9 Multiple Vulnerabilities
  • NASL family Web Servers
    NASL id WEBSPHERE_8_5_5_2.NASL
    description IBM WebSphere Application Server 8.5 prior to Fix Pack 8.5.5.2 appears to be running on the remote host and is, therefore, potentially affected by the following vulnerabilities : - Numerous errors exist related to the included IBM SDK for Java (based on the Oracle JDK) that could allow denial of service attacks and information disclosure. (CVE-2013-5372, CVE-2013-5780, CVE-2013-5803) - User input validation errors exist related to the Administrative console and the Oauth component that could allow cross-site scripting attacks. (CVE-2013-6725 / PM98132, CVE-2013-6323 / PI04777, CVE-2013-6738 / PI05661) - An error exists due to a failure to properly handle by web services endpoint requests that could allow denial of service attacks. (CVE-2013-6325 / PM99450, PI08267) - An error exists in the included IBM Global Security Kit related to SSL handling that could allow denial of service attacks. (CVE-2013-6329 / PI05309) - A flaw exists with the 'mod_dav' module that is caused when tracking the length of CDATA that has leading white space. A remote attacker with a specially crafted DAV WRITE request can cause the service to stop responding. (CVE-2013-6438 / PI09345) - An error exists in the included IBM Global Security Kit related to malformed X.509 certificate chain handling that could allow denial of service attacks. (CVE-2013-6747 / PI09443) - An error exists in the included Apache Tomcat version related to handling 'Content-Type' HTTP headers and multipart requests such as file uploads that could allow denial of service attacks. (CVE-2014-0050 / PI12648, PI12926) - An unspecified error exists that could allow file disclosures to remote unauthenticated attackers. (CVE-2014-0823 / PI05324) - An unspecified error exists related to the Administrative console that could allow a security bypass. (CVE-2014-0857 / PI07808) - An error exists related to a web server plugin and retrying failed POST requests that could allow denial of service attacks. (CVE-2014-0859 / PI08892) - An error exists related to the Proxy and ODR components that could allow information disclosure. (CVE-2014-0891 / PI09786) - An unspecified error exists related to the 'Liberty Profile' that could allow information disclosure. (CVE-2014-0896 / PI10134)
    last seen 2019-02-21
    modified 2018-08-06
    plugin id 74235
    published 2014-05-29
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=74235
    title IBM WebSphere Application Server 8.5 < Fix Pack 8.5.5.2 Multiple Vulnerabilities
  • NASL family Web Servers
    NASL id WEBSPHERE_7_0_0_33.NASL
    description IBM WebSphere Application Server 7.0 prior to Fix Pack 33 is running on the remote host. It is, therefore, affected by the following vulnerabilities : - A cross-site scripting flaw exists within the Administration Console, where user input is improperly validated. This could allow a remote attacker, with a specially crafted request, to execute arbitrary script code within the browser / server trust relationship. (CVE-2013-6323, PI04777 and PI04880) - A denial of service flaw exists within the Global Security Kit when handling SSLv2 resumption during the SSL/TLS handshake. This could allow a remote attacker to crash the program. (CVE-2013-6329, PI05309) - A buffer overflow flaw exists in the HTTP server with the mod_dav module when using add-ons. This could allow a remote attacker to cause a buffer overflow and a denial of service. (CVE-2013-6438, PI09345) - A cross-site scripting flaw exists within OAuth where user input is not properly validated. This could allow a remote attacker, with a specially crafted request, to execute arbitrary script code within the browser / server trust relationship. (CVE-2013-6738, PI05661) - A denial of service flaw exists within the Global Security Kit when handling X.509 certificate chain during the initiation of an SSL/TLS connection. A remote attacker, using a malformed certificate chain, could cause the client or server to crash by hanging the Global Security Kit. (CVE-2013-6747, PI09443) - A denial of service flaw exists within the Apache Commons FileUpload when parsing a content-type header for a multipart request. A remote attacker, using a specially crafted request, could crash the program. (CVE-2014-0050, PI12648, PI12926 and PI13162) - A denial of service flaw exists in the 'mod_log_config' when logging a cookie with an unassigned value. A remote attacker, using a specially crafted request, can cause the program to crash. (CVE-2014-0098, PI13028) - A remote code execution flaw exists with Apache Struts. The failure to restrict setting of Class loader attributes could allow a remote attacker to execute arbitrary script code. (CVE-2014-0114, PI17190) - An information disclosure flaw exists in the 'sun.security.rsa.RSAPadding' with 'PKCS#1' unpadding. This many allow a remote attacker to gain timing information intended to be protected by encryption. (CVE-2014-0453) - A flaw exists within 'com.sun.jndi.dns.DnsClient' related to the randomization of query IDs. This could allow a remote attacker to conduct spoofing attacks. (CVE-2014-0460) - A denial of service flaw exists in a web server plugin on servers configured to retry failed POST request. This could allow a remote attacker to crash the application. (CVE-2014-0859, PI08892) - A flaw exists with the 'IBMJCE' and 'IBMSecureRandom' cryptographic providers by generating numbers in a predictable manner. This could allow a remote attacker to easily guess the output of the random number generator. (CVE-2014-0878) - An information disclosure flaw exists within Proxy and ODR servers. This could allow a remote attacker, using a specially crafted request, to gain access to potentially sensitive information. (CVE-2014-0891, PI09786) - A denial of service flaw exists within the IBM Security Access Manager for Web with the Reverse Proxy component. This could allow a remote attacker, using specially crafted TLS traffic, to cause the application on the system to become unresponsive. (CVE-2014-0963, PI17025) - An information disclosure flaw exists when handling SOAP responses. This could allow a remote attacker to potentially gain access to sensitive information. (CVE-2014-0965, PI11434) - An information disclosure flaw exists. A remote attacker, using a specially crafted URL, could gain access to potentially sensitive information. (CVE-2014-3022, PI09594)
    last seen 2019-02-21
    modified 2018-08-06
    plugin id 76967
    published 2014-08-01
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=76967
    title IBM WebSphere Application Server 7.0 < Fix Pack 33 Multiple Vulnerabilities
refmap via4
aixapar PI08892
bid 67335
confirm
xf ibm-was-cve20140859-retry(90879)
Last major update 06-01-2017 - 21:59
Published 01-05-2014 - 13:29
Last modified 28-08-2017 - 21:34
Back to Top