IBM Tivoli Policy Director WebSeal Denial Of Service Vulnerability

WebSeal is the proxy component of the IBM Tivoli Policy Director. It is able to provide authentication and control web access by filtering HTTP requests.

WebSeal is prone to denial of service attacks. If a '%2e' is appended to the end of a web request, this will cause WebSeal to stop operating when it tries to process the URL.

It has been reported that this is related to the use of SSL junctions between the WebSeal component and web servers. The WebSeal component may fail when certain URLs are passed across this connection.


Privacy Statement
Copyright 2010, SecurityFocus