CVE-1999-0944

IBM WebSphere ikeyman - Weak Encryption for SSL Key Database Password

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0944. PoCs published by Ben Laurie.

AI-analyzed exploit summary This Perl script decrypts IBM HTTP Server stash files by XORing each byte with 0xf5, revealing the stored password. It exploits weak encryption in IBM WebSphere's 'ikeyman' tool.

Description

IBM WebSphere ikeyman tool uses weak encryption to store a password for a key database that is used for SSL connections.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Ben Laurie · perllocalmultiple

https://www.exploit-db.com/exploits/20274

View Code ZIP pw:eip

This Perl script decrypts IBM HTTP Server stash files by XORing each byte with 0xf5, revealing the stored password. It exploits weak encryption in IBM WebSphere's 'ikeyman' tool.

Classification

Working Poc 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: IBM WebSphere (with ikeyman tool)

No auth needed

Prerequisites: Access to the stash file

MITRE ATT&CK

T1552.001 - Credentials In Files

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Third Party Advisory, VDB Entry x_refsource_misc

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0944

Scores

EPSS 0.0420

EPSS Percentile 89.7%

Details

Status published

Published Oct 24, 1999

Tracked Since Feb 18, 2026