Memory Leak Vulnerability in IBM WebSphere Application Server (WAS) JSP Component

Memory Leak Vulnerability in IBM WebSphere Application Server (WAS) JSP Component

CVE-2011-1317 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Memory leak in com.ibm.ws.jsp.runtime.WASJSPStrBufferImpl in the JavaServer Pages (JSP) component in IBM WebSphere Application Server (WAS) 6.1.0.x before 6.1.0.37 and 7.x before 7.0.0.15 allows remote attackers to cause a denial of service (memory consumption) by sending many JSP requests that trigger large responses.

Learn more about our Cis Benchmark Audit For Ibm I.