BSA-2017-372

Brocade Fabric OS

2 more products

21513

27 October 2017

25 August 2017

Closed

Medium

6.5

N/A

CVE-2016-7046

Summary

Security Advisory ID : BSA-2017-372

Component : RedHat Jboss EAP

Revision : 2.0: Interim

Red Hat JBoss Enterprise Application Platform (EAP) 7, when operating as a reverse-proxy with default buffer sizes, allows remote attackers to cause a denial of service (CPU and disk consumption) via a long URL.

Affected Products

Brocade is investigating its product lines to determine which products may be affected by this vulnerability and the impact on each affected product.

Products Confirmed Not Vulnerable

Brocade Fabric OS, Brocade FastIron OS, Brocade NetIron OS, Brocade Network OS, Brocade ServerIron ADX, Brocade SLX-OS, Brocade Virtual ADX, and Brocade Workflow Composer are confirmed not affected by this vulnerability.

Workaround

There are no workarounds that address this vulnerability.


Revision History

Version Change Date
1.0 Initial Publication August 25, 2017
2.0 Updated to address ADX, vADX, & WC October 27, 2017