First published: Wed Feb 20 2013(Updated: )
IBM WebSphere Message Broker 6.1 before 6.1.0.12, 7.0 before 7.0.0.6, and 8.0 before 8.0.0.2, when the Parse Query Strings option is enabled on an HTTPInput node, allows remote attackers to cause a denial of service (infinite loop) via a crafted query string.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM WebSphere Message Broker | =6.1 | |
IBM WebSphere Message Broker | =6.1.0.1 | |
IBM WebSphere Message Broker | =6.1.0.2 | |
IBM WebSphere Message Broker | =6.1.0.3 | |
IBM WebSphere Message Broker | =6.1.0.4 | |
IBM WebSphere Message Broker | =6.1.0.5 | |
IBM WebSphere Message Broker | =6.1.0.6 | |
IBM WebSphere Message Broker | =6.1.0.7 | |
IBM WebSphere Message Broker | =6.1.0.8 | |
IBM WebSphere Message Broker | =6.1.0.9 | |
IBM WebSphere Message Broker | =6.1.0.10 | |
IBM WebSphere Message Broker | =6.1.0.11 | |
IBM WebSphere Message Broker | =7.0. | |
IBM WebSphere Message Broker | =7.0.0.1 | |
IBM WebSphere Message Broker | =7.0.0.2 | |
IBM WebSphere Message Broker | =7.0.0.3 | |
IBM WebSphere Message Broker | =7.0.0.4 | |
IBM WebSphere Message Broker | =7.0.0.5 | |
IBM WebSphere Message Broker | =8.0 | |
IBM WebSphere Message Broker | =8.0.0.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.