| Revision Date: | 2015-04-20 | Version: | 28 | | Title: | HP-UX Apache Running Tomcat Servlet Engine, Remote Denial of Service (DoS), Access Restriction Bypass, Unauthorized Modification and Other Vulnerabilities | | Description: | The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308. | | Family: | unix | Class: | vulnerability | | Status: | ACCEPTED | Reference(s): | CVE-2010-4476
| | Platform(s): | HP-UX 11
| Product(s): | | | Definition Synopsis | | platforms HP-UX B.11.23
OR HP-UX B.11.31
AND hpuxws22TOMCAT.TOMCAT version is less than B.5.5.36.01
|
|