Vulnerabilities > CVE-2014-0964 - Resource Management Errors vulnerability in IBM Websphere Application Server
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
IBM WebSphere Application Server (WAS) 6.1.0.0 through 6.1.0.47 and 6.0.2.0 through 6.0.2.43 allows remote attackers to cause a denial of service via crafted TLS traffic, as demonstrated by traffic from a CVE-2014-0160 vulnerability-assessment tool.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- http://www.securitytracker.com/id/1030280
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI14306
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI16981
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI17128
- http://www-01.ibm.com/support/docview.wss?uid=swg21671835
- http://www-304.ibm.com/support/docview.wss?uid=swg21673808
- https://exchange.xforce.ibmcloud.com/vulnerabilities/92877