IBM Websphere Caching Proxy 3.6/4.0 - Denial of Service

Author: Rapid7
type: dos
platform: unix
port: 
date_added: 2002-10-18  
date_updated: 2012-10-13  
verified: 1  
codes: CVE-2002-1169;OSVDB-2090  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 21949.txt  

source: https://www.securityfocus.com/bid/6002/info

A vulnerability has been reported in the Caching Proxy component bundled with IBM WebSphere Edge Server. The vulnerability is due to inadequate checks when processing HTTP headers.

An attacker can exploit this vulnerability by sending a malformed HTTP request to the Caching Proxy. When the service attempts to process the request the service will crash thereby causing the denial of service.

GET /cgi-bin/helpout.exe HTTP