Denial of Service Vulnerability in Sun Java System Web Server by Sun Microsystems
CVE-2010-0389

Currently unrated

Key Information:

Vendor: Oracle
Status: Java System Web Server
Vendor: CVE Published:; 25 January 2010

Summary

The admin server of Sun Java System Web Server 7.0 Update 6 is vulnerable to a denial-of-service attack due to a lack of method token in HTTP requests. Remote attackers can exploit this vulnerability to trigger a NULL pointer dereference, leading to a crash of the web server daemon. This can disrupt services and impact the availability of applications relying on this server, making it critical for administrators to ensure their installations are patched and appropriately secured.

References

http://intevydis.blogspot.com/2010/01/sun-java-system-web...

x_refsource_MISC

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jan 25, 2010