CVE-2016-0400

MEDIUM

IBM WebSphere eXtreme Scale <7.1.0.3-8.6.0.8 - CRLF Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2016-0400. PoCs published by blomster81.

AI-analyzed exploit summary This exploit leverages CVE-2016-0400 to achieve local privilege escalation on Windows 7 SP1 x86 by overwriting the HalDispatchTable to execute arbitrary code in kernel mode, spawning a SYSTEM-level CMD.exe. It includes shellcode injection into winlogon.exe.

Description

CRLF injection vulnerability in IBM WebSphere eXtreme Scale 7.1.0 before 7.1.0.3, 7.1.1 before 7.1.1.1, 8.5 before 8.5.0.3, and 8.6 before 8.6.0.8 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL.

Exploits (1)

exploitdb WORKING POC
by blomster81 · c++localwindows_x86
https://www.exploit-db.com/exploits/40039

This exploit leverages CVE-2016-0400 to achieve local privilege escalation on Windows 7 SP1 x86 by overwriting the HalDispatchTable to execute arbitrary code in kernel mode, spawning a SYSTEM-level CMD.exe. It includes shellcode injection into winlogon.exe.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Complex
Reliability
Racy
Target: Windows 7 SP1 x86
Auth required
Prerequisites: Local access to a vulnerable Windows 7 SP1 x86 system · Ability to execute arbitrary code with low privileges
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PI60897
Patch, Vendor Advisory x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21983036
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/40039/
Various Sources vendor-advisory x_refsource_aixapar
http://www-01.ibm.com/support/docview.wss?uid=swg1PI60898

Scores

CVSS v3 6.1
EPSS 0.0214
EPSS Percentile 79.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

Status published
Products (14)
ibm/websphere_extreme_scale 7.1.0
ibm/websphere_extreme_scale 7.1.0.2
ibm/websphere_extreme_scale 7.1.1
ibm/websphere_extreme_scale 8.5.0
ibm/websphere_extreme_scale 8.5.0.1
ibm/websphere_extreme_scale 8.5.0.2
ibm/websphere_extreme_scale 8.6.0.0
ibm/websphere_extreme_scale 8.6.0.1
ibm/websphere_extreme_scale 8.6.0.2
ibm/websphere_extreme_scale 8.6.0.3
... and 4 more
Published Jul 02, 2016
Tracked Since Feb 18, 2026