The Remote Document Conversion Service (DCS) in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3 CF27, 7.0.0 through 7.0.0.2 CF29, 8.0.0 before 8.0.0.1 CF16, and 8.5.0 through CF05 allows remote attackers to cause a denial of service (memory consumption) via crafted requests.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Websphere_portal | Ibm | 6.1.0.0 (including) | 6.1.0.0 (including) |
| Websphere_portal | Ibm | 6.1.0.1 (including) | 6.1.0.1 (including) |
| Websphere_portal | Ibm | 6.1.0.2 (including) | 6.1.0.2 (including) |
| Websphere_portal | Ibm | 6.1.0.3 (including) | 6.1.0.3 (including) |
| Websphere_portal | Ibm | 6.1.0.4 (including) | 6.1.0.4 (including) |
| Websphere_portal | Ibm | 6.1.0.5 (including) | 6.1.0.5 (including) |
| Websphere_portal | Ibm | 6.1.0.6 (including) | 6.1.0.6 (including) |
| Websphere_portal | Ibm | 6.1.5.0 (including) | 6.1.5.0 (including) |
| Websphere_portal | Ibm | 6.1.5.1 (including) | 6.1.5.1 (including) |
| Websphere_portal | Ibm | 6.1.5.2 (including) | 6.1.5.2 (including) |
| Websphere_portal | Ibm | 6.1.5.3 (including) | 6.1.5.3 (including) |
| Websphere_portal | Ibm | 7.0.0.0 (including) | 7.0.0.0 (including) |
| Websphere_portal | Ibm | 7.0.0.1 (including) | 7.0.0.1 (including) |
| Websphere_portal | Ibm | 7.0.0.2 (including) | 7.0.0.2 (including) |
| Websphere_portal | Ibm | 8.0.0.0 (including) | 8.0.0.0 (including) |
| Websphere_portal | Ibm | 8.0.0.1 (including) | 8.0.0.1 (including) |
| Websphere_portal | Ibm | 8.5.0.0 (including) | 8.5.0.0 (including) |
References
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI37356
- http://www-01.ibm.com/support/docview.wss?uid=swg21701566
- http://www.securityfocus.com/bid/74216
- http://www.securitytracker.com/id/1032189
- http://www-01.ibm.com/support/docview.wss?uid=swg1PI37356
- http://www-01.ibm.com/support/docview.wss?uid=swg21701566
- http://www.securityfocus.com/bid/74216
- http://www.securitytracker.com/id/1032189