Denial of Service Vulnerability in IBM HTTP Server 1.3.6
CVE-2000-1168

Currently unrated

Key Information:

Vendor: IBM
Status: Http Server
Vendor: CVE Published:; 9 January 2001

Summary

The IBM HTTP Server version 1.3.6, which is based on Apache, is susceptible to remote denial of service attacks. An attacker can exploit this vulnerability by sending a specially crafted long GET request, potentially causing the server to crash or become unresponsive. Additionally, there is a possibility that this flaw could allow the execution of arbitrary commands on the server, further compromising its security. It is essential for organizations using this version to implement necessary patches and updates to mitigate any risk associated with this vulnerability.

References

http://marc.info/?l=bugtraq&m=97502498610979&w=2

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/1988

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jan 9, 2001
Vulnerability Reserved
Dec 14, 2000