Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/03 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2011-4461

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jetty 8.1.0.RC2 and earlier computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote...

5.3CVSS6.1AI score0.05044EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.29 views

RHEL 6 : jetty-eclipse (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - jetty: hash table collisions CPU usage DoS oCERT-2011-003 CVE-2011-4461 Note that Nessus has not tested for this...

5.3CVSS7.3AI score0.05044EPSS
Exploits1References1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 11:13 p.m.26 views

Security Bulletin: Potential Denial of Service (DoS) security vulnerability in IBM Sterling External Authentication Server

Abstract Potential Denial of Service DoS security vulnerability in IBM Sterling External Authentication Server due to a Java HashTable security vulnerability in Jetty CVE-2011-4461. Content SUMMARY: Potential Denial of Service DoS security vulnerability in IBM Sterling External Authentication...

5.3CVSS5.7AI score0.05044EPSS
Exploits1Affected Software10
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 11:13 p.m.27 views

Security Bulletin: Denial of service in IBM InfoSphere Data Replication Dashboard (CVE-2011-4461)

Abstract InfoSphere Data Replication Dashboard includes Jetty which has a known security vulnerability that can lead to a denial of service. Content VULNERABILITY DETAILS: CVE ID: CVE-2011-4461 DESCRIPTION: An attacker, using specially crafted HTTP requests, can cause up to 100% CPU usage,...

5.3CVSS5.4AI score0.05044EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 10:39 p.m.31 views

Security Bulletin: Potential Denial of Service (DoS) security vulnerability in IBM Sterling Connect:Enterprise for UNIX

Abstract Potential Denial of Service DoS security vulnerability in IBM Sterling Connect:Enterprise for UNIX due to a Java HashTable security vulnerability in Jetty CVE-2011-4461. Content SUMMARY: Potential Denial of Service DoS security vulnerability in IBM Sterling Connect:Enterprise for UNIX du...

5.3CVSS5.3AI score0.05044EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/22 5:41 p.m.27 views

Security Bulletin: Potential Denial of Service security vulnerability in Rational Synergy (CVE-2011-4461)

Summary Potential Denial of Service DoS security vulnerability in IBM Rational Synergy due to a Java HashTable security vulnerability in Jetty CVE-2011-4461. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow this link for mo...

5.3CVSS0.4AI score0.05044EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.29 views

openSUSE Security Update : jetty5 (openSUSE-2012-128)

jetty5 was prone to a remotely exploitable Denial of Service flaw via hash collisions %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-128. The text description of this plugin is ...

5.3CVSS6.2AI score0.05044EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.37 views

openSUSE Security Update : jetty5 (openSUSE-SU-2012:0262-1)

jetty5 was prone to a remotely exploitable Denial of Service flaw via hash collisions CVE-2011-4461. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update jetty5-5813. The text description of this...

5.3CVSS6.2AI score0.05044EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2012/12/21 3:12 a.m.41 views

Moderate: Red Hat Security Advisory: Fuse MQ Enterprise 7.1.0 update

Fuse MQ Enterprise 7.1.0, which fixes one security issue, various bugs, and adds enhancements, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, whi...

5.3CVSS6.3AI score0.05044EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2012/03/26 12:0 a.m.45 views

Fedora 16 : jetty-6.1.26-8.fc16 (2012-0730)

Back-port of upstream jetty patches for CVE-2011-4461 - hash table collisions DoS. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

5.3CVSS6.3AI score0.05044EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2012/03/26 12:0 a.m.90 views

Fedora 15 : jetty-6.1.26-7.fc15 (2012-0752)

Back-port of upstream jetty patches for CVE-2011-4461, hash DOS. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing addition...

5.3CVSS6.3AI score0.05044EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2012/03/26 12:0 a.m.33 views

Fedora Update for jetty FEDORA-2012-0730

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5.3CVSS5.8AI score0.05044EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2012/03/26 12:0 a.m.26 views

Fedora Update for jetty FEDORA-2012-0752

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5.3CVSS5.8AI score0.05044EPSS
Exploits1References2
CVE
CVE
added 2011/12/30 1:0 a.m.282 views

CVE-2011-4461

CVE-2011-4461 affects Jetty (e.g., Jetty 8.1.0.RC2 and earlier). The vulnerability arises from hash table collisions in Jetty’s handling of form parameters, enabling a remote attacker to cause CPU exhaustion/DoS by sending crafted parameters. IBM and related advisories consistently describe the D...

5.3CVSS5.2AI score0.05044EPSS
Exploits1References14Affected Software1
UbuntuCve
UbuntuCve
added 2011/12/29 12:0 a.m.33 views

CVE-2011-4461

Jetty 8.1.0.RC2 and earlier computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service CPU consumption by sending many crafted parameters...

5.3CVSS6.5AI score0.05044EPSS
Exploits1References6
Rows per page
Query Builder