Secunia
Login
|
|
CVE Reference: CVE-2011-4461 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2011-4461 |
|
|
Description: Jetty 8.1.0.RC2 and earlier computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/72017 UBUNTU http://www.ubuntu.com/usn/USN-1429-1 ST 1026475 SAID Secunia Advisory: SA47408 Secunia Advisory: SA48981 MISC http://www.ocert.org/advisories/ocert-2011-003.html http://www.nruns.com/_downloads/advisory28122011.pdf CERT-VN 903934 BUGTRAQ http://archives.neohapsis.com/archives/bugtraq/2011-12/0181.html |
|
| Return to the previous page. |
