Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Javamail does not properly handle a series of invalid login attempts in which the same e-mail address is entered as username and password, and the domain portion of this address yields a Java UnknownHostException error, which allows remote attackers to cause a denial of service (connection pool exhaustion) via a large number of requests, resulting in a SQLNestedException. NOTE: Sun disputes this issue, stating "The report makes references to source code and files that do not exist in the mentioned products.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sun JavaMail SQLNestedException 拒绝服务攻击漏洞
Vulnerability Description
Javamail不能正确处理使用大量用户名和密码登录进同样的邮件地址的一系列非法登录尝试,会产生一个Java UnknownHostException 错误,这使得远程攻击者借助由一个SQLNestedException产生的大值请求造成拒绝服务。 注意:sun对此问题的翻译有纠纷,指出"报告书提到的源代码和文件,在提及的产品中不存在"。
CVSS Information
N/A
Vulnerability Type
N/A