[email protected]CVE-2011-1318

HistoryMar 08, 2011 - 9:59 p.m.

CVE-2011-1318

2011-03-0821:59:00

CWE-399

[email protected]

web.nvd.nist.gov

cve-2011-1318

memory leak

org.apache.jasper.runtime.jspwriterimpl

ibm websphere application server

denial of service

nvd

6.7 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

57.5%

JSON

Memory leak in org.apache.jasper.runtime.JspWriterImpl.response in the JavaServer Pages (JSP) component in IBM WebSphere Application Server (WAS) before 7.0.0.15 allows remote attackers to cause a denial of service (memory consumption) by accessing a JSP page of an application that is repeatedly stopped and restarted.

CPENameOperatorVersion
ibm:websphere_application_serveribm websphere application servereq5.0.0
ibm:websphere_application_serveribm websphere application servereq6.1.0.21
ibm:websphere_application_serveribm websphere application servereq6.1.0.31
ibm:websphere_application_serveribm websphere application servereq3.0.21
ibm:websphere_application_serveribm websphere application servereq6.1.7
ibm:websphere_application_serveribm websphere application servereq5.1.0.5
ibm:websphere_application_serveribm websphere application servereq6.1
ibm:websphere_application_serveribm websphere application servereq7.0.0.2
ibm:websphere_application_serveribm websphere application servereq5.0.2.10
ibm:websphere_application_serveribm websphere application servereq5.1.1.14

CPE	Name	Operator	Version
ibm:websphere_application_server	ibm websphere application server	eq	5.0.0
ibm:websphere_application_server	ibm websphere application server	eq	6.1.0.21
ibm:websphere_application_server	ibm websphere application server	eq	6.1.0.31
ibm:websphere_application_server	ibm websphere application server	eq	3.0.21
ibm:websphere_application_server	ibm websphere application server	eq	6.1.7
ibm:websphere_application_server	ibm websphere application server	eq	5.1.0.5
ibm:websphere_application_server	ibm websphere application server	eq	6.1
ibm:websphere_application_server	ibm websphere application server	eq	7.0.0.2
ibm:websphere_application_server	ibm websphere application server	eq	5.0.2.10
ibm:websphere_application_server	ibm websphere application server	eq	5.1.1.14

Rows per page:

1-10 of 1391

References

www-01.ibm.com/support/docview.wss?uid=swg1PM23029

www-01.ibm.com/support/docview.wss?uid=swg27014463

6.7 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

57.5%

JSON

Related for CVE-2011-1318

prion1 cvelist1 openvas2 nessus1