Security issue in Java based server

Linear Mode

Security issue in Java based server

xoft

Cuberite Developer

Posts: 6,485
Threads: 176
Joined: Jan 2012

Thanks: 131
Given 1074 thank(s) in 852 post(s)

04-17-2015, 11:05 PM

Oh well, reducing the payload a bit resulted in the server spitting out 110 MiB of output into the log and dying because of a deadlock detection false positive. So we are indeed vulnerable, although at least not to the unmodified generally available attack.

Find

« Next Oldest | Next Newest »

Messages In This Thread

Security issue in Java based server - by Jammet - 04-17-2015, 09:48 PM

RE: Security issue in Java based server - by xoft - 04-17-2015, 10:10 PM

RE: Security issue in Java based server - by Jammet - 04-17-2015, 10:23 PM

RE: Security issue in Java based server - by xoft - 04-17-2015, 10:32 PM

RE: Security issue in Java based server - by xoft - 04-17-2015, 10:59 PM

RE: Security issue in Java based server - by xoft - 04-17-2015, 11:05 PM

RE: Security issue in Java based server - by xoft - 04-18-2015, 10:09 PM

RE: Security issue in Java based server - by Jammet - 04-18-2015, 11:11 PM

RE: Security issue in Java based server - by tigerw - 04-19-2015, 01:59 AM

RE: Security issue in Java based server - by jan64 - 04-18-2015, 11:15 PM

RE: Security issue in Java based server - by worktycho - 04-19-2015, 12:12 AM

RE: Security issue in Java based server - by xoft - 04-19-2015, 02:33 AM

RE: Security issue in Java based server - by worktycho - 04-19-2015, 03:04 AM

View a Printable Version

Users browsing this thread: 3 Guest(s)