Buffer overflow in Sun Java_system_web_server

CVE-2010-0387

Multiple heap-based buffer overflows in (1) webservd and (2) the admin server in Sun Java System Web Server 7.0 Update 7 allow remote attackers to cause a denial of service (daemon crash) and possibly have unspecified other impact via a lo…

Vulnerability class: Buffer Overflow

EPSS: 0.077 (93.8th percentile) — read the EPSS interpretation.

Affected products

Sun Java_system_web_server — versions 7.0
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

cve@mitre.org (Exploit, x_refsource_MISC)
cve@mitre.org (mailing-list, x_refsource_MLIST)
cve@mitre.org (vdb-entry, x_refsource_SECTRACK)
cve@mitre.org (Exploit, vdb-entry, x_refsource_BID)
cve@mitre.org (vdb-entry, x_refsource_XF)