Denial of service in JBoss Enterprise Application Platform - CVE-2016-7046
Published: October 4, 2016 / Updated: October 4, 2016
Vulnerability identifier: #VU731
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2016-7046
CWE-ID: CWE-120
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vendor: Red Hat Inc.
Affected software:
JBoss Enterprise Application Platform
JBoss Enterprise Application Platform
Detailed vulnerability description
The vulnerability allows a remote user to cause denial of service on the target system.
The weakness exists due to buffer overflow. By sending a long URL attackers can trigger the service deny.
Successful exploitation of the vulnerability results in denial of service on the vulnerable system.
The weakness exists due to buffer overflow. By sending a long URL attackers can trigger the service deny.
Successful exploitation of the vulnerability results in denial of service on the vulnerable system.
How to mitigate CVE-2016-7046
No solutions resolving the vulnerability are available.