CVE Vulnerabilities

CVE-2009-1101

Published: Mar 25, 2009 | Modified: Oct 10, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

Unspecified vulnerability in the lightweight HTTP server implementation in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12 and earlier allows remote attackers to cause a denial of service (probably resource consumption) for a JAX-WS service endpoint via a connection without any data, which triggers a file descriptor leak.

Affected Software

Name Vendor Start Version End Version
Jdk Sun * 1.6.0
Jdk Sun 1.6.0 1.6.0
Jdk Sun 1.6.0 1.6.0
Jdk Sun 1.6.0 1.6.0
Jdk Sun 1.6.0 1.6.0
Jdk Sun 1.6.0 1.6.0
Jdk Sun 1.6.0 1.6.0
Jdk Sun 1.6.0 1.6.0
Jdk Sun 1.6.0 1.6.0
Jdk Sun 1.6.0 1.6.0
Jdk Sun 1.6.0 1.6.0
Jdk Sun 1.6.0 1.6.0
Jre Sun * 1.6.0
Jre Sun 1.6.0 1.6.0
Jre Sun 1.6.0 1.6.0
Jre Sun 1.6.0 1.6.0
Jre Sun 1.6.0 1.6.0
Jre Sun 1.6.0 1.6.0
Jre Sun 1.6.0 1.6.0
Jre Sun 1.6.0 1.6.0
Jre Sun 1.6.0 1.6.0
Jre Sun 1.6.0 1.6.0
Jre Sun 1.6.0 1.6.0

References