CVE-2009-4442

Currently unrated

Key Information:

Vendor
Oracle
Vendor
CVE Published:
28 December 2009

Summary

Directory Proxy Server (DPS) in Sun Java System Directory Server Enterprise Edition 6.0 through 6.3.1 does not properly implement the max-client-connections configuration setting, which allows remote attackers to cause a denial of service (connection slot exhaustion) by making multiple connections and performing no operations on these connections, aka Bug Id 6648665.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.