It was found in Undertow prior to 1.3.28 that with non-clean TCP close, the Websocket server gets into infinite loop on every IO thread, effectively causing DoS.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
redhat undertow |
||
debian debian linux 9.0 |
||
redhat jboss_enterprise_application_platform 6.0.0 |
||
redhat jboss_enterprise_application_platform 7.0.0 |
||
redhat jboss_enterprise_application_platform 7.1.0 |