Lucene search

K

MitreCVELIST:CVE-2011-4461

HistoryDec 30, 2011 - 1:00 a.m.

CVE-2011-4461

2011-12-3001:00:00

mitre

www.cve.org

2

5.4 Medium

AI Score

Confidence

High

0.017 Low

EPSS

Percentile

87.6%

Jetty 8.1.0.RC2 and earlier computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.

References

archives.neohapsis.com/archives/bugtraq/2011-12/0181.html

marc.info/?l=bugtraq&m=143387688830075&w=2

secunia.com/advisories/47408

secunia.com/advisories/48981

www.kb.cert.org/vuls/id/903934

www.nruns.com/_downloads/advisory28122011.pdf

www.ocert.org/advisories/ocert-2011-003.html

www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html

www.securitytracker.com/id?1026475

www.ubuntu.com/usn/USN-1429-1

exchange.xforce.ibmcloud.com/vulnerabilities/72017

security.netapp.com/advisory/ntap-20190307-0004/

5.4 Medium

AI Score

Confidence

High

0.017 Low

EPSS

Percentile

87.6%

Related for CVELIST:CVE-2011-4461

ibm16 redhat3 openvas6 ubuntu1 nessus7 ubuntucve1 cve2 fedora2 github2 prion2 osv2 nvd2 cvelist1 securityvulns2 seebug1 oracle3