CVE-2009-0120 – IBM Websphere DataPower XML Security Gateway 3.6.1 XS40 - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2009-0120
The IBM WebSphere DataPower XML Security Gateway XS40 with firmware 3.6.1.5 allows remote attackers to cause a denial of service (device reboot) by sending data over an established SSL connection, as demonstrated by the abc\r\n\r\n string data. El IBM WebSphere DataPower XML Security Gateway XS40 con firmware 3.6.1.5, permite a atacantes remotos provocar una denegación de servicio (reinicio de dispositivo) mediante el envío de información sobre una conexión SSL, como se ha demostrado mediante la cadena de datos abc\r\n\r\n. • https://www.exploit-db.com/exploits/32712 http://securityreason.com/securityalert/4911 http://www.securityfocus.com/archive/1/499870/100/0/threaded http://www.securityfocus.com/bid/33169 http://www.securitytracker.com/id?1021547 http://www.vupen.com/english/advisories/2009/0111 • CWE-20: Improper Input Validation •