CVE-2006-3127

Sažetak

Memory leak in Network Security Services (NSS) 3.11, as used in Sun Java Enterprise System 2003Q4 through 2005Q1 and Java System Directory Server 5.2, allows remote attackers to cause a denial of service (memory consumption) by performing a large number of RSA cryptographic operations.

Reference

http://secunia.com/advisories/25048
http://securitytracker.com/id?1016294
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102461-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102896-1
http://www.redhat.com/archives/fedora-package-announce/2006-June/msg00155.html
http://www.securityfocus.com/bid/18604
http://www.securityfocus.com/bid/20846
http://www.vupen.com/english/advisories/2007/1573

CVSS

Base:	7.8
Impact:	6.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:N/A:C

Zadnje važnije ažuriranje

07-03-2011 - 05:00

Objavljeno

21-06-2006 - 23:02