Описание
Directory Proxy Server (DPS) in Sun Java System Directory Server Enterprise Edition 6.0 through 6.3.1 does not enable the SO_KEEPALIVE socket option, which makes it easier for remote attackers to cause a denial of service (connection slot exhaustion) via multiple connections, aka Bug Id 6782659.
Ссылки
- Patch
- PatchVendor Advisory
- Patch
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:sun:java_system_directory_server:6.0:*:enterprise:*:*:*:*:*
cpe:2.3:a:sun:java_system_directory_server:6.1:enterprise:*:*:*:*:*:*
cpe:2.3:a:sun:java_system_directory_server:6.2:enterprise:*:*:*:*:*:*
cpe:2.3:a:sun:java_system_directory_server:6.3:enterprise:*:*:*:*:*:*
cpe:2.3:a:sun:java_system_directory_server:6.3.1:enterprise:*:*:*:*:*:*
EPSS
Процентиль: 82%
0.01798
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Directory Proxy Server (DPS) in Sun Java System Directory Server Enterprise Edition 6.0 through 6.3.1 does not enable the SO_KEEPALIVE socket option, which makes it easier for remote attackers to cause a denial of service (connection slot exhaustion) via multiple connections, aka Bug Id 6782659.
EPSS
Процентиль: 82%
0.01798
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other