IBM Security Bulletin: WebSphere Application Server Edge Caching Proxy may be vulnerable to HTTP response splitting (CVE-2017-1503)

The Edge Caching Proxy component of WebSphere Application Server may be vulnerable to HTTP response splitting attack.

CVE(s): CVE-2017-1503

Affected product(s) and affected version(s):

This vulnerability affects the following versions and releases of IBM WebSphere Application Server:

  • Version 9.0
  • Version 8.5
  • Version 8.0
  • Version 7.0

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://ift.tt/2fZjm72
X-Force Database: http://ift.tt/2wLXmTS

The post IBM Security Bulletin: WebSphere Application Server Edge Caching Proxy may be vulnerable to HTTP response splitting (CVE-2017-1503) appeared first on IBM PSIRT Blog.



from IBM Product Security Incident Response Team http://ift.tt/2fYDRAt