Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The doFilter function in webapp/PushHandlerFilter.java in JBoss RichFaces 4.3.4, 4.3.5, and 5.x allows remote attackers to cause a denial of service (memory consumption and out-of-memory error) via a large number of malformed atmosphere push requests.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat JBoss RichFaces‘doFilter’函数输入验证漏洞
Vulnerability Description
Red Hat JBoss RichFaces是美国红帽(Red Hat)公司的一个开源的JSF(JavaServer Faces)组件库。该库提供内置的JavaScript和Ajax功能。 JBoss RichFaces 4.3.4、4.3.5及5.x版本中的webapp/PushHandlerFilter.java文件中的‘doFilter’函数存在安全漏洞。远程攻击者可通过发送大量畸形的推送请求利用该漏洞造成拒绝服务(内存损坏和内存不足错误)。
CVSS Information
N/A
Vulnerability Type
N/A