Vulnerabilities > IBM > Websphere Caching Proxy Server > 4.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-11-04 | CVE-2002-1169 | Denial Of Service vulnerability in IBM Websphere Caching Proxy IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to cause a denial of service (crash) via an HTTP request to helpout.exe with a missing HTTP version number, which causes ibmproxy.exe to crash. | 5.0 |
2002-11-04 | CVE-2002-1168 | Unspecified vulnerability in IBM Websphere Caching Proxy Server 3.6/4.0 Cross-site scripting (XSS) vulnerability in IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to execute script as other users via an HTTP request that contains an Location: header with a "%0a%0d" (CRLF) sequence, which echoes the Location as an HTTP header in the server response. network ibm | 6.8 |
2002-11-04 | CVE-2002-1167 | Cross-Site Scripting vulnerability in IBM Websphere Edge Server 3.6/4.0 Cross-site scripting (XSS) vulnerability in IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to execute script as other users via an HTTP GET request. network ibm | 6.8 |