Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Jboss EAP Loop with Unreachable Exit Condition (Infinite Loop) Vulnerability - CVE-2017-2670 - Vulnerability Database
Jboss EAP

Jboss EAP Loop with Unreachable Exit Condition (Infinite Loop) Vulnerability - CVE-2017-2670

High
Reference: CVE-2017-2670
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2017-2670
Title: Jboss EAP Loop with Unreachable Exit Condition (Infinite Loop) Vulnerability
Overview:

It was found in Undertow before 1.3.28 that with non-clean TCP close the Websocket server gets into infinite loop on every IO thread effectively causing DoS.