First published: Fri Dec 31 2004(Updated: )
Spooler in Apache Foundation James 2.2.0 allows local users to cause a denial of service (memory consumption) by triggering various error conditions in the retrieve function, which prevents a lock from being released and causes a memory leak.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Apache James | =2.2.0 | |
maven/org.apache.james:james-server | <2.2.0 | 2.2.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2004-2650 is classified as a low severity vulnerability that can lead to denial of service due to memory consumption.
To fix CVE-2004-2650, upgrade to Apache James version 2.2.0 or later.
CVE-2004-2650 is a local denial of service vulnerability caused by memory leaks in the spooler.
CVE-2004-2650 affects Apache James version 2.2.0 and earlier.
CVE-2004-2650 can be exploited by local users who can trigger error conditions in the retrieve function.