CVE-2009-0120 Information

Description

The IBM WebSphere DataPower XML Security Gateway XS40 with firmware 3.6.1.5 allows remote attackers to cause a denial of service (device reboot) by sending data over an established SSL connection as demonstrated by the abc\r\n\r\n string data.

Reference

http://securityreason.com/securityalert/4911 http://www.securityfocus.com/archive/1/499870/100/0/threaded http://www.securityfocus.com/bid/33169 http://www.securitytracker.com/id?1021547 http://www.vupen.com/english/advisories/2009/0111