DNS: Sun Java JRE DNS Denial Of Service
This signature detects attempts to exploit a known vulnerability against Sun Java JRE DNS. A successful attack can result in a denial-of-service condition.
Extended Description
A remote denial of service vulnerability reportedly affects the Sun Java Runtime Environment. This issue is due to a design error that fails to keep track of DNS requests. An attacker may leverage this issue to cause an application running on the affected software to fail to make DNS requests, causing a denial of service condition on network-based Java applications. Reports from Harry Johnston indicate the OraClient 10g component of Oracle Database Server 10g incorporates a vulnerable version of the Java Runtime Environment and is therefore vulnerable to this issue.
Affected Products
Sun jre_(windows_production_release)
Short Name
DNS:REQUEST:SUN-JRE-DOS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
DNS
Keywords
CVE-2004-1503 DNS Denial JRE Java Of Service Sun bid:11619
Release Date
07/09/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Sun
CVSS Score
5.0