CVE-2017-1235

MEDIUM

IBM WebSphere MQ 8.0 - Authenticated Denial of Service

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2017-1235. PoCs published by 11k4r.

AI-analyzed exploit summary The repository contains only an empty Python file with no functional exploit code. No details about CVE-2017-1235 or exploitation logic are present.

Description

IBM WebSphere MQ 8.0 could allow an authenticated user to cause a premature termination of a client application thread which could potentially cause denial of service. IBM X-Force ID: 123914.

Exploits (1)

nomisec STUB

by 11k4r · poc

https://github.com/11k4r/CVE-2017-1235_exploit

View Code ZIP pw:eip

The repository contains only an empty Python file with no functional exploit code. No details about CVE-2017-1235 or exploitation logic are present.

Classification

Stub 10%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: unknown

No auth needed

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Patch, Vendor Advisory x_refsource_confirm

http://www.ibm.com/support/docview.wss?uid=swg22005415

VDB Entry x_refsource_misc

https://exchange.xforce.ibmcloud.com/vulnerabilities/123914

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/100955

Scores

CVSS v3 6.5

EPSS 0.0225

EPSS Percentile 80.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

Status published

Products (9)

IBM/MQ 8

IBM/MQ 8.0

ibm/websphere_mq 8.0.0.0

ibm/websphere_mq 8.0.0.1

ibm/websphere_mq 8.0.0.2

ibm/websphere_mq 8.0.0.3

ibm/websphere_mq 8.0.0.4

ibm/websphere_mq 8.0.0.5

ibm/websphere_mq 8.0.0.6

Published Sep 25, 2017

Tracked Since Feb 18, 2026