IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to cause a denial of service by directly calling the macro.d2w macro with a long string of %0a characters.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Net.commerce | Ibm | 2.0 (including) | 2.0 (including) |
Net.commerce | Ibm | 3.0 (including) | 3.0 (including) |
Net.commerce | Ibm | 3.1 (including) | 3.1 (including) |
Net.commerce | Ibm | 3.1.1 (including) | 3.1.1 (including) |
Net.commerce | Ibm | 3.1.2 (including) | 3.1.2 (including) |
Net.commerce_hosting_server | Ibm | 3.1.1 (including) | 3.1.1 (including) |
Net.commerce_hosting_server | Ibm | 3.1.2 (including) | 3.1.2 (including) |
Websphere_application_server | Ibm | 5.1.0.3 (including) | 5.1.0.3 (including) |