CVE-2010-0360
N/A
N/A
Summary
Sun Java System Web Server (aka SJWS) 7.0 Update 7 allows remote attackers to overwrite memory locations in the heap, and discover the contents of memory locations, via a malformed HTTP TRACE request that includes a long URI and many empty headers, related to an "overflow." NOTE: this might overlap CVE-2010-0272 and CVE-2010-0273.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://intevydis.blogspot.com/2010/01/sun-java-system-web-server-70u7-trace.html
- http://intevydis.com/vd-list.shtml
References
- http://intevydis.blogspot.com/2010/01/sun-java-system-web-server-70u7-trace.html
- http://intevydis.com/vd-list.shtml
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.