Denial of Service Vulnerability in Apache Foundation James 2.2.0
CVE-2004-2650

Currently unrated

Key Information:

Vendor: Apache
Status: James
Vendor: CVE Published:; 31 December 2004

Summary

The Spooler component of Apache Foundation James 2.2.0 is vulnerable to a denial of service attack. Local users can exploit this vulnerability by triggering various error conditions in the retrieve function. Such exploitation leads to a failure in releasing locks, ultimately resulting in significant memory consumption and memory leaks. This issue could cause the application to become unresponsive and may impact the availability of services relying on James.

References

http://issues.apache.org/jira/browse/JAMES-268

x_refsource_MISC

http://james.apache.org/changelog.html

x_refsource_CONFIRM

http://www.securityfocus.com/bid/15765

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 31, 2004