CVE Vulnerabilities

CVE-2009-1101

Published: Mar 25, 2009 | Modified: Oct 10, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
6.4 IMPORTANT
AV:N/AC:L/Au:N/C:P/I:N/A:P
RedHat/V3
Ubuntu
MEDIUM

Unspecified vulnerability in the lightweight HTTP server implementation in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12 and earlier allows remote attackers to cause a denial of service (probably resource consumption) for a JAX-WS service endpoint via a connection without any data, which triggers a file descriptor leak.

Affected Software

Name Vendor Start Version End Version
Jdk Sun * 1.6.0 (including)
Jdk Sun 1.6.0 (including) 1.6.0 (including)
Jdk Sun 1.6.0-update_10 (including) 1.6.0-update_10 (including)
Jdk Sun 1.6.0-update_11 (including) 1.6.0-update_11 (including)
Jdk Sun 1.6.0-update_3 (including) 1.6.0-update_3 (including)
Jdk Sun 1.6.0-update_4 (including) 1.6.0-update_4 (including)
Jdk Sun 1.6.0-update_5 (including) 1.6.0-update_5 (including)
Jdk Sun 1.6.0-update_6 (including) 1.6.0-update_6 (including)
Jdk Sun 1.6.0-update_7 (including) 1.6.0-update_7 (including)
Jdk Sun 1.6.0-update1 (including) 1.6.0-update1 (including)
Jdk Sun 1.6.0-update1_b06 (including) 1.6.0-update1_b06 (including)
Jdk Sun 1.6.0-update2 (including) 1.6.0-update2 (including)
Jre Sun * 1.6.0 (including)
Jre Sun 1.6.0 (including) 1.6.0 (including)
Jre Sun 1.6.0-update_1 (including) 1.6.0-update_1 (including)
Jre Sun 1.6.0-update_10 (including) 1.6.0-update_10 (including)
Jre Sun 1.6.0-update_11 (including) 1.6.0-update_11 (including)
Jre Sun 1.6.0-update_2 (including) 1.6.0-update_2 (including)
Jre Sun 1.6.0-update_3 (including) 1.6.0-update_3 (including)
Jre Sun 1.6.0-update_4 (including) 1.6.0-update_4 (including)
Jre Sun 1.6.0-update_5 (including) 1.6.0-update_5 (including)
Jre Sun 1.6.0-update_6 (including) 1.6.0-update_6 (including)
Jre Sun 1.6.0-update_7 (including) 1.6.0-update_7 (including)
Extras for RHEL 4 RedHat java-1.6.0-sun-1:1.6.0.13-1jpp.1.el4 *
Extras for RHEL 4 RedHat java-1.5.0-ibm-1:1.5.0.9-1jpp.5.el4 *
Extras for RHEL 4 RedHat java-1.6.0-ibm-1:1.6.0.5-1jpp.1.el4 *
Red Hat Enterprise Linux 5 RedHat java-1.6.0-openjdk-1:1.6.0.0-0.30.b09.el5 *
Red Hat Network Satellite Server v 5.3 RedHat java-1.6.0-ibm-1:1.6.0.7-1jpp.3.el4 *
Supplementary for Red Hat Enterprise Linux 5 RedHat java-1.6.0-sun-1:1.6.0.13-1jpp.1.el5 *
Supplementary for Red Hat Enterprise Linux 5 RedHat java-1.5.0-ibm-1:1.5.0.9-1jpp.3.el5 *
Supplementary for Red Hat Enterprise Linux 5 RedHat java-1.6.0-ibm-1:1.6.0.5-1jpp.1.el5 *
Openjdk-6 Ubuntu hardy *
Openjdk-6 Ubuntu intrepid *
Sun-java5 Ubuntu dapper *
Sun-java5 Ubuntu gutsy *
Sun-java5 Ubuntu intrepid *
Sun-java6 Ubuntu gutsy *
Sun-java6 Ubuntu hardy *
Sun-java6 Ubuntu intrepid *
Sun-java6 Ubuntu jaunty *
Sun-java6 Ubuntu karmic *
Sun-java6 Ubuntu lucid *
Sun-java6 Ubuntu upstream *

References