Vulnerability Details : CVE-2009-0505
The CICS listener in IBM TXSeries for Multiplatforms 6.2 GA waits for a forcepurge acknowledgement from the CICS Application Server (CICSAS) after an eci response timeout, which might allow remote authenticated users to cause a denial of service (forcepurge handling delay), or have unspecified other impact, via vectors involving slow or nonexistent acknowledgement.
Vulnerability category: Denial of service
Products affected by CVE-2009-0505
- cpe:2.3:a:ibm:txseries:6.2:-:solaris:*:*:*:*:*
- cpe:2.3:a:ibm:txseries:6.2:-:windows:*:*:*:*:*
- cpe:2.3:a:ibm:txseries:6.2:-:aix:*:*:*:*:*
- cpe:2.3:a:ibm:txseries:6.2:-:ga:*:*:*:*:*
- cpe:2.3:a:ibm:txseries:6.2:-:hp-ia:*:*:*:*:*
- cpe:2.3:a:ibm:txseries:6.2:-:hp-ux:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2009-0505
0.65%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 68 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2009-0505
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
9.0
|
HIGH | AV:N/AC:L/Au:S/C:C/I:C/A:C |
8.0
|
10.0
|
NIST |
References for CVE-2009-0505
Jump to