|CERT-In Vulnerability Note
Denial of Service Vulnerability in Red Hat JBoss
Original Issue Date:February 09, 2018
Severity Rating: HIGH
- JBoss Enterprise Application Platform 6.4 for RHEL 7 x86_64
- JBoss Enterprise Application Platform 6.4 for RHEL 7 ppc64
- JBoss Enterprise Application Platform 6 for RHEL 7 x86_64
- JBoss Enterprise Application Platform 6 for RHEL 7 ppc64
A vulnerabilities has been reported in Red Hat JBoss which could allow attacker to cause Denial of Service (Dos) condition on the targeted system.
The vulnerability exists in Red Hat JBoss is due to improper handling memory operations performed by the Remote Message Channel component of the affected software. An attacker could exploit this vulnerability by sending a crafted request to the targeted system.
Successful exploitation of this vulnerability could trigger an infinite loop, causing high CPU utilization on the system, resulting in a DoS condition.
Apply appropriate fixes as issued by vendor in
The information provided herein is on "as is" basis, without warranty of any kind.
Email: firstname.lastname@example.org Phone: +91-11-24368572
Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
6, CGO Complex, Lodhi Road,
New Delhi - 110 003