Vigil@nce: Sun AS, GlassFish, denial of service
June 2009 by Marc Jacob
SYNTHESIS OF THE VULNERABILITY
A local attacker can generate a denial of service on Sun GlassFish
Enterprise Server or Sun Java System Application Server.
Severity: 1/4
Consequences: denial of service of service
Provenance: user shell
Means of attack: no proof of concept, no attack
Ability of attacker: expert (4/4)
Confidence: confirmed by the editor (5/5)
Diffusion of the vulnerable configuration: high (3/3)
Creation date: 04/06/2009
IMPACTED PRODUCTS
– Sun GlassFish Enterprise Server
– Sun Java System Application Server
DESCRIPTION OF THE VULNERABILITY
Sun announced that a local attacker can force Sun GlassFish
Enterprise Server or Sun Java System Application Server to consume
excessive system resources.
Technical details are unknown.
CHARACTERISTICS
Identifiers: 258528, 6806221, VIGILANCE-VUL-8763
http://vigilance.fr/vulnerability/Sun-AS-GlassFish-denial-of-service-8763