Denial of Service Vulnerability in Sun Java System Web Server by Sun Microsystems
CVE-2010-0389

Currently unrated

Key Information:

Vendor
Oracle
Vendor
CVE Published:
25 January 2010

Summary

The admin server of Sun Java System Web Server 7.0 Update 6 is vulnerable to a denial-of-service attack due to a lack of method token in HTTP requests. Remote attackers can exploit this vulnerability to trigger a NULL pointer dereference, leading to a crash of the web server daemon. This can disrupt services and impact the availability of applications relying on this server, making it critical for administrators to ensure their installations are patched and appropriately secured.

References

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.