Unknown vulnerability in ColdFusion MX 6.0 and 6.1, and JRun 4.0, when a SOAP web service expects an array of objects as an argument, allows remote attackers to cause a denial of service (memory consumption).
Software | From | Fixed in |
---|---|---|
macromedia / jrun | 4.0 | 4.0.x |
macromedia / jrun | 4.0_build_61650 | 4.0_build_61650.x |
macromedia / jrun | 4.0-sp1 | 4.0-sp1.x |
macromedia / jrun | 4.0-sp1a | 4.0-sp1a.x |
macromedia / coldfusion | 6.0 | 6.0.x |
macromedia / coldfusion | 6.1 | 6.1.x |
sun / one_application_server | 7.0 | 7.0.x |
sun / one_application_server | 7.0-ur1 | 7.0-ur1.x |
sun / one_application_server | 7.0-ur2 | 7.0-ur2.x |