Description
Apache Karaf before 4.0.10 enables a shutdown port on the loopback interface, which allows local users to cause a denial of service (shutdown) by sending a shutdown command to all listening high ports.
Remediation
References
http://karaf.apache.org/security/cve-2014-0219.txt
http://www.securityfocus.com/bid/101872
https://bugzilla.redhat.com/show_bug.cgi?id=1095974
Related Vulnerabilities
CVE-2023-24057 Vulnerability in maven package ca.uhn.hapi.fhir:org.hl7.fhir.utilities
CVE-2023-31103 Vulnerability in maven package org.apache.inlong:manager-test
CVE-2013-2254 Vulnerability in maven package org.apache.sling:org.apache.sling.servlets.post
CVE-2020-11023 Vulnerability in maven package org.fujion.webjars:jquery
CVE-2023-46654 Vulnerability in maven package org.jenkins-ci.plugins:electricflow