APAR status
Closed as program error.
Error description
WebSphere plug-in does not handle backslash character in cookie
value of the HTTP request.
.
For example, if cookie is set to alpesh=alpesh\\alpesh, in the
plug-in trace is printed this information of the http header
that is later sent to the AppServer (what is wrong):
TRACE: Set-Cookie: alpesh=alpesh\alpesh
.
The same problem occurs in the latest Cumulative plug-in fix
for WebSphere 4.0.2-4.0.6, dated Oct 1, 2003
.
This problem very likely occurs also in WebSphere 5.0.x plug-ins
.
This problem very likely occurs also in WebSphere 5.1 plug-ins
Local fix
Not available.
Problem summary
****************************************************************
* USERS AFFECTED: Users of WAS Plug-in for iPlanet or SunOne *
* webserver. *
****************************************************************
* PROBLEM DESCRIPTION: Plug-in did not parse the escaped *
* backslash included in the string that *
* contained the request headers. As a *
* result, double backslashes were sent *
* to appservers. *
****************************************************************
* RECOMMENDATION: *
****************************************************************
Plug-in sent double backslashes to appservers.
Problem conclusion
Plug-in now parses escaped backslash from string that contains
the request headers.
Temporary fix Comments
APAR information |
APAR number |
PQ80924 |
Reported component name |
WEBSPHERE AE SO |
Reported component ID |
5630A2202 |
Reported release |
400 |
Status |
CLOSED PER |
PE |
NoPE |
HIPER |
NoHIPER |
Submitted date |
2003-11-13 |
Closed date |
2003-11-20 |
Last modified date |
2004-09-16 |
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
SRLS
Applicable component levels |
R400 PSY |
UP |
|