CVE-2010-4592

2010-12-2220:00:00

mitre

www.cve.org

6.5 Medium

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.9%

JSON

The Mobile Network Connections functionality in the Connection Manager in IBM Lotus Mobile Connect before 6.1.4, when HTTP Access Services (HTTP-AS) is enabled, does not properly handle failed attempts at establishing HTTP-TCP sessions, which allows remote attackers to cause a denial of service (memory consumption and daemon crash) by making many TCP connection attempts.