CVE-2015-4947
Description
Stack-based buffer overflow in the Administration Server in IBM HTTP Server 6.1.0.x through 6.1.0.47, 7.0.0.x before 7.0.0.39, 8.0.0.x before 8.0.0.12, and 8.5.x before 8.5.5.7, as used in WebSphere Application Server and other products, allows remote authenticated users to execute arbitrary code via unspecified vectors.
Risk Information
Base Score
9.9
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS Score
Exploitation Probability
4.968
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Update http_server 8.5.5.6 to latest version | Windows |
| Multiple vulnerabilities are fixed in IBM HTTP 8.5.5.7 | Windows |
| Multiple vulnerabilities are fixed in IBM HTTP 8.0.0.12 | Windows |
| Multiple vulnerabilities are fixed in IBM HTTP 8.0.0.9 | Windows |
| Multiple vulnerabilities are fixed in IBM HTTP 7.0.0.33 | Windows |
| Multiple vulnerabilities are fixed in IBM HTTP 6.1.0.47 | Windows |
| Vulnerabilities CVE-2015-4947,CVE-2015-2716,CVE-2015-1283 are fixed in IBM HTTP 8.5.5.4 | Windows |
| Multiple vulnerabilities are fixed in IBM HTTP 7.0.0.39 | Windows |
| Multiple Vulnerabilities are affected in IBM Tivoli Monitoring 6.23 | Windows |
| Multiple Vulnerabilities are affected in IBM Tivoli Monitoring 6.30 | Windows |
| Update http_server 8.5.5.6 to latest version (For Linux) | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234