Описание
Sun Calendar Express Web Server in Sun ONE Calendar Server 6.0 and Sun Java System Calendar Server 6 2004Q2 through 6.3-7.01 allows remote attackers to cause a denial of service (daemon crash) via multiple requests to the default URI with alphabetic characters in the tzid parameter.
Ссылки
- PatchVendor Advisory
- Exploit
- Exploit
- PatchVendor Advisory
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:sun:java_system_calendar_server:6:-:sparc:*:*:*:*:*
cpe:2.3:a:sun:java_system_calendar_server:6.3:-:sparc:*:*:*:*:*
cpe:2.3:a:sun:one_calendar_server:6.0:-:sparc:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:sun:java_system_calendar_server:6:-:x86:*:*:*:*:*
cpe:2.3:a:sun:java_system_calendar_server:6.3:-:x86:*:*:*:*:*
cpe:2.3:a:sun:one_calendar_server:6.0:-:x86:*:*:*:*:*
Конфигурация 3
Одно из
cpe:2.3:a:sun:java_system_calendar_server:6:-:linux:*:*:*:*:*
cpe:2.3:a:sun:java_system_calendar_server:6.3:-:linux:*:*:*:*:*
cpe:2.3:a:sun:one_calendar_server:6.0:-:linux:*:*:*:*:*
EPSS
Процентиль: 93%
0.11059
Средний
5 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
почти 4 года назад
Sun Calendar Express Web Server in Sun ONE Calendar Server 6.0 and Sun Java System Calendar Server 6 2004Q2 through 6.3-7.01 allows remote attackers to cause a denial of service (daemon crash) via multiple requests to the default URI with alphabetic characters in the tzid parameter.
EPSS
Процентиль: 93%
0.11059
Средний
5 Medium
CVSS2
Дефекты
CWE-20