Release date:
Updated on:
Affected Systems:
Ibm OS/400 6.x
Description:
--------------------------------------------------------------------------------
Cve id: CVE-2011-3192
Ibm OS/400 is an operating system running on an IBM network server.
A denial of service vulnerability exists in the implementation of the ByteRange filter in ibm OS/400. Malicious users can exploit this vulnerability to cause a denial of service.
This vulnerability is caused by an error when the ByteRange filter processes requests that contain a large number of scopes. by sending specially crafted HTTP requests to the server, a large amount of memory can be consumed.
<* Source: vendor
Link: http://secunia.com/advisories/45644/
Http://secunia.com/advisories/45606/
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
IBM
---
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://www.ers.ibm.com/