CVE Reference: CVE-2010-2327

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2010-2327

Description:
mod_ibm_ssl in IBM HTTP Server 6.0 before 6.0.2.43, 6.1 before 6.1.0.33, and 7.0 before 7.0.0.11, as used in IBM WebSphere Application Server (WAS) on z/OS, does not properly handle a large HTTP request body in uploading over SSL, which might allow remote attackers to cause a denial of service (daemon fail) via an upload.

CVE Status:
Candidate

References:

SAID
  Secunia Advisory: SA40096

OSVDB
  65439

AIXAPAR
  http://www-01.ibm.com/support/docview.wss?uid=swg1PM10270
  http://www-01.ibm.com/support/docview.wss?uid=swg1PM15830


Return to the previous page.