CVE-2010-0387: Buffer Overflow
First published: Mon Jan 25 2010(Updated: )
Multiple heap-based buffer overflows in (1) webservd and (2) the admin server in Sun Java System Web Server 7.0 Update 7 allow remote attackers to cause a denial of service (daemon crash) and possibly have unspecified other impact via a long string in an "Authorization: Digest" HTTP header.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sun Java System Web Server | =7.0-update_7 | |
| =7.0-update_7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2010-0387?
CVE-2010-0387 is classified as a high-severity vulnerability due to its potential to cause a denial of service.
How do I fix CVE-2010-0387?
To fix CVE-2010-0387, upgrade to a patched version of Sun Java System Web Server beyond 7.0 Update 7.
What are the potential impacts of exploiting CVE-2010-0387?
Exploiting CVE-2010-0387 can lead to a daemon crash and may allow for unspecified other impacts on the server.
Which versions of Sun Java System Web Server are affected by CVE-2010-0387?
CVE-2010-0387 affects Sun Java System Web Server version 7.0 Update 7.
How does CVE-2010-0387 exploit the web server?
CVE-2010-0387 exploits the web server through multiple heap-based buffer overflows triggered by long strings in the 'Authorization: Digest' HTTP header.
- collector/nvd-historical
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/event
- vendor/sun
- canonical/sun java system web server
- version/sun java system web server/7.0-update_7