← Back

CVE-2009-4442

nvd nist
Published: Dec 28, 2009Modified: Apr 23, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:N/I:N/A:P
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

Directory Proxy Server (DPS) in Sun Java System Directory Server Enterprise Edition 6.0 through 6.3.1 does not properly implement the max-client-connections configuration setting, which allows remote attackers to cause a denial of service (connection slot exhaustion) by making multiple connections and performing no operations on these connections, aka Bug Id 6648665.

Affected (5)

Sun
1 product
Java System Directory Server
Configuration A
5 vulnerable
Vulnerable SoftwareAffected Versions
Sun
Java System Directory Server
Version 6.0
Java System Directory Server
Version 6.1 enterprise
Java System Directory Server
Version 6.2 enterprise
Java System Directory Server
Version 6.3.1 enterprise
Java System Directory Server
Version 6.3 enterprise

Related CWEs

CWE-16
CWE-16

References (12)

Source: cve@mitre.org
Source: cve@mitre.org
Patch
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.