The Java Secure Socket Extension (JSSE) in Sun JDK and JRE 6 Update 1 and previous versions, JDK and JRE 5.0 Updates 7 through 11, and SDK and JRE 1.4.2_11 up to and including 1.4.2_14, when using JSSE for SSL/TLS support, allows remote malicious users to cause a denial of service (CPU consumption) via certain SSL/TLS handshake requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun jdk 1.5.0 |
||
sun jdk 1.6.0 |
||
sun jre 1.4.2 11 |
||
sun jre 1.4.2 12 |
||
sun jre 1.4.2 13 |
||
sun jre 1.4.2 14 |
||
sun jre 1.5.0 |
||
sun jre 1.6.0 |
||
sun sdk 1.4.2 11 |
||
sun sdk 1.4.2 12 |
||
sun sdk 1.4.2 13 |
||
sun sdk 1.4.2 14 |