Description
It was found in Undertow before 1.3.28 that with non-clean TCP close, the Websocket server gets into infinite loop on every IO thread, effectively causing DoS.
Remediation
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-2000-0746)
SugarCRM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-17306)
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-4042)
WebLogic Download of Code Without Integrity Check Vulnerability (CVE-2020-5398)
WordPress Plugin Quick Buy For Woocommerce Arbitrary File Disclosure (2.0)