Описание
Directory Proxy Server (DPS) in Sun Java System Directory Server Enterprise Edition 6.0 through 6.3.1 does not properly implement the max-client-connections configuration setting, which allows remote attackers to cause a denial of service (connection slot exhaustion) by making multiple connections and performing no operations on these connections, aka Bug Id 6648665.
Directory Proxy Server (DPS) in Sun Java System Directory Server Enterprise Edition 6.0 through 6.3.1 does not properly implement the max-client-connections configuration setting, which allows remote attackers to cause a denial of service (connection slot exhaustion) by making multiple connections and performing no operations on these connections, aka Bug Id 6648665.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2009-4442
- http://secunia.com/advisories/37915
- http://sunsolve.sun.com/search/document.do?assetkey=1-21-141958-01-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-270789-1
- http://www.securityfocus.com/bid/37481
- http://www.securitytracker.com/id?1023389
- http://www.vupen.com/english/advisories/2009/3647
EPSS
CVE ID
Связанные уязвимости
Directory Proxy Server (DPS) in Sun Java System Directory Server Enterprise Edition 6.0 through 6.3.1 does not properly implement the max-client-connections configuration setting, which allows remote attackers to cause a denial of service (connection slot exhaustion) by making multiple connections and performing no operations on these connections, aka Bug Id 6648665.
EPSS