The Java Secure Socket Extension (JSSE) in Sun JDK and JRE 6 Update 1 and earlier, JDK and JRE 5.0 Updates 7 through 11, and SDK and JRE 1.4.2_11 through 1.4.2_14, when using JSSE for SSL/TLS support, allows remote attackers to cause a denial of service (CPU consumption) via certain SSL/TLS handshake requests.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Sdk | Sun | 1.4.2_12 | 1.4.2_12 |
Sdk | Sun | 1.4.2_14 | 1.4.2_14 |
Jre | Sun | 1.6.0 | 1.6.0 |
Jre | Sun | 1.4.2_13 | 1.4.2_13 |
Sdk | Sun | 1.4.2_13 | 1.4.2_13 |
Jdk | Sun | 1.5.0 | 1.5.0 |
Jre | Sun | 1.5.0 | 1.5.0 |
Jdk | Sun | 1.5.0 | 1.5.0 |
Jre | Sun | 1.4.2_12 | 1.4.2_12 |
Jre | Sun | 1.5.0 | 1.5.0 |
Jre | Sun | 1.4.2_14 | 1.4.2_14 |
Jre | Sun | 1.5.0 | 1.5.0 |
Jdk | Sun | 1.6.0 | 1.6.0 |
Jdk | Sun | 1.5.0 | 1.5.0 |
Sdk | Sun | 1.4.2_11 | 1.4.2_11 |
Jre | Sun | 1.5.0 | 1.5.0 |
Jre | Sun | 1.4.2_11 | 1.4.2_11 |
Jre | Sun | 1.5.0 | 1.5.0 |
Jdk | Sun | 1.5.0 | 1.5.0 |
Jdk | Sun | 1.5.0 | 1.5.0 |