CVE-2002-1169

IBM Web Traffic Express Caching Proxy Server <4.0.1.26 - DoS

Title source: llm

Description

IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to cause a denial of service (crash) via an HTTP request to helpout.exe with a missing HTTP version number, which causes ibmproxy.exe to crash.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Rapid7 · textdosunix

https://www.exploit-db.com/exploits/21949

View Code ZIP pw:eip

References (5)

Core 5

Core References

Vendor Advisory vdb-entry x_refsource_xf

http://www.iss.net/security_center/static/10452.php

Various Sources vendor-advisory x_refsource_aixapar

http://www-1.ibm.com/support/search.wss?rs=0&q=IY35970&apar=only

Exploit, Patch, Vendor Advisory x_refsource_misc

http://www.rapid7.com/advisories/R7-0007.txt

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/6002

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/2090

Scores

EPSS 0.0427

EPSS Percentile 88.9%

Details

Status published

Products (2)

ibm/websphere_caching_proxy_server 3.6

ibm/websphere_caching_proxy_server 4.0

Published Nov 04, 2002

Tracked Since Feb 18, 2026