Unrated severityNVD Advisory· Published Dec 30, 2010· Updated Apr 29, 2026
CVE-2010-3862
CVE-2010-3862
Description
The org.jboss.remoting.transport.bisocket.BisocketServerInvoker$SecondaryServerSocketThread.run method in JBoss Remoting 2.2.x before 2.2.3.SP4 and 2.5.x before 2.5.3.SP2 in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.3 through 4.3.0.CP09, and 5.1.0; and JBoss Enterprise Web Platform (aka JBEWP) 5.1.0; allows remote attackers to cause a denial of service (daemon outage) by establishing a bisocket control connection TCP session, and then not sending any application data.
Affected products
23cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:*:*:*:*:*:*:*+ 10 more
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:cp01:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:cp02:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:cp03:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:cp04:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:cp05:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:cp06:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:cp07:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:cp08:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:4.3.0:cp09:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_application_platform:5.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_enterprise_web_platform:5.1.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:jboss_remoting:2.2.0:*:*:*:*:*:*:*+ 10 more
- cpe:2.3:a:redhat:jboss_remoting:2.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_remoting:2.2.2:sp10:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_remoting:2.2.2:sp11:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_remoting:2.2.2:sp2:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_remoting:2.2.2:sp4:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_remoting:2.2.2:sp7:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_remoting:2.2.2:sp8:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_remoting:2.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_remoting:2.2.3:sp1:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_remoting:2.2.3:sp2:*:*:*:*:*:*
- cpe:2.3:a:redhat:jboss_remoting:2.2.3:sp3:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- bugzilla.redhat.com/show_bug.cginvdPatch
- www.redhat.com/support/errata/RHSA-2010-0937.htmlnvdVendor Advisory
- www.redhat.com/support/errata/RHSA-2010-0938.htmlnvdVendor Advisory
- www.redhat.com/support/errata/RHSA-2010-0939.htmlnvdVendor Advisory
- www.redhat.com/support/errata/RHSA-2010-0959.htmlnvdVendor Advisory
- www.redhat.com/support/errata/RHSA-2010-0960.htmlnvdVendor Advisory
- www.redhat.com/support/errata/RHSA-2010-0961.htmlnvdVendor Advisory
- www.redhat.com/support/errata/RHSA-2010-0962.htmlnvdVendor Advisory
- www.redhat.com/support/errata/RHSA-2010-0963.htmlnvdVendor Advisory
- securitytracker.com/idnvd
- issues.jboss.org/browse/JBPAPP-5253nvd
- issues.jboss.org/browse/JBREM-1261nvd
News mentions
0No linked articles in our index yet.