CVE-2015-4947

IBM HTTP Server 6.1.0.0-6.1.0.47 - Authenticated Stack-based Buffer Overflow

Title source: llm
STIX 2.1

Description

Stack-based buffer overflow in the Administration Server in IBM HTTP Server 6.1.0.x through 6.1.0.47, 7.0.0.x before 7.0.0.39, 8.0.0.x before 8.0.0.12, and 8.5.x before 8.5.5.7, as used in WebSphere Application Server and other products, allows remote authenticated users to execute arbitrary code via unspecified vectors.

References (5)

Core 5
Core References
Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21965419
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/76658
Vendor Advisory vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PI45596
Vendor Advisory vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PI44793
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1033512

Scores

EPSS 0.0791
EPSS Percentile 94.0%

Details

CWE
CWE-119
Status published
Products (1)
ibm/http_server 6.1.0.0 - 6.1.0.47
Published Sep 15, 2015
Tracked Since Feb 18, 2026