org.jboss.remoting%3Ajboss-remoting@4.0.0.Beta3 vulnerabilities
-
latest version
5.0.28.Final
-
latest non vulnerable version
-
first published
16 years ago
-
latest version published
3 months ago
-
licenses detected
- [3.3.0.Beta1,5.0.0.CR2)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the org.jboss.remoting%3Ajboss-remoting package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
Affected versions of this package are vulnerable to Denial of Service (DoS). A malicious attacker could cause threads to hold up forever in the EJB server by writing a sequence of bytes corresponding to the expected messages of a successful EJB client request, but omitting the ACK messages, or just tamper with jboss-remoting code, deleting the lines that send the ACK message from the EJB client code. This would result in a denial of service. How to fix Denial of Service (DoS)? Upgrade |
[,5.0.20.Final)
|