Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3387

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2011-3387
Last Modified 25 Oct 2011 11:01:00
Published 02 Sep 2011 07:55:05
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2011-3387

Summary

The class file parser in IBM Java 1.4.2 SR13 FP9 allows remote authenticated users to cause a denial of service (memory consumption or an infinite loop) via a crafted attribute length field in a class file, related to validation of a length field at the wrong time, a different vulnerability than CVE-2011-0311.

Vulnerable Systems

Application

  • Ibm Java 1.4.2.13.9


References

AIXAPAR - PM42551

XF - ibm-java-class-file-dos(69641)

REDHAT - RHSA-2011:1265


Last Updated: 27 May 2016 10:57:42