CVE-2016-9589

Description

Undertow in Red Hat wildfly before version 11.0.0.Beta1 is vulnerable to a resource exhaustion resulting in a denial of service. Undertow keeps a cache of seen HTTP headers in persistent connections. It was found that this cache can easily exploited to fill memory with garbage, up to "max-headers" (default 200) * "max-header-size" (default 1MB) per active TCP connection.

CVSS Metrics

• v3.0•HIGH•Score: 7.5CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
• v2.0•MEDIUM•Score: 5AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS Trends

Current EPSS score: 2.19%• Percentile: 85%

Techniques & Countermeasures

• CWE-400•Uncontrolled Resource Consumption

  The product does not properly control the allocation and maintenance of a limited resource.

Affected Systems

• org.wildfly•wildfly-undertow

  < 11.0.0.Beta1

• red hat, inc.•wildfly

  11.0.0.Beta1

• redhat•jboss_wildfly_application_server

  ≤ 10.1.0 | 11.0.0:alpha1

References (16)

• http://rhn.redhat.com/errata/RHSA-2017-0831.html
• http://rhn.redhat.com/errata/RHSA-2017-0876.html
• http://rhn.redhat.com/errata/RHSA-2017-0834.html
• https://bugzilla.redhat.com/show_bug.cgi?id=1404782
• https://access.redhat.com/errata/RHSA-2017:3458
• http://rhn.redhat.com/errata/RHSA-2017-0832.html
• http://www.securityfocus.com/bid/97060
• https://access.redhat.com/errata/RHSA-2017:3455
• https://access.redhat.com/errata/RHSA-2017:3456
• https://access.redhat.com/errata/RHSA-2017:0873
• https://access.redhat.com/errata/RHSA-2017:3454
• http://rhn.redhat.com/errata/RHSA-2017-0830.html
• https://access.redhat.com/errata/RHSA-2017:0872
• https://nvd.nist.gov/vuln/detail/CVE-2016-9589
• https://github.com/wildfly/wildfly
• https://web.archive.org/web/20200227180917/https://www.securityfocus.com/bid/97060