Description
Oracle Java SE before 7 Update 6, and OpenJDK 7 before 7u6 build 12 and 8 before build 39, computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.
Remediation
References
Related Vulnerabilities
WordPress Plugin Count per Day 'notes.php' Cross-Site Scripting (3.2.3)
WordPress Plugin Music Store Cross-Site Scripting (1.0.52)
OpenVPN AS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-2061)
Oracle Application Server CVE-2008-0349 Vulnerability (CVE-2008-0349)
Oracle Application Server CVE-2008-7237 Vulnerability (CVE-2008-7237)