Description

Oracle Java SE before 7 Update 6, and OpenJDK 7 before 7u6 build 12 and 8 before build 39, computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.

Remediation

References

CVE-2012-2739

Related Vulnerabilities

WordPress Plugin Easy2Map Photos Cross-Site Scripting (2.0.6)

WordPress Plugin qTranslate X Multiple Cross-Site Scripting Vulnerabilities (3.4.6.8)

LimeSurvey Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2019-16187)

WordPress Plugin All in One SEO-Best WordPress SEO-Easily Improve SEO Rankings & Increase Traffic Cross-Site Request Forgery (4.2.3.1)

WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-11620)

Severity

Medium

Classification

CVE-2012-2739

Tags

Missing Update Known Vulnerabilities