CVE-2010-0388 Information

Description

Format string vulnerability in the WebDAV implementation in webservd in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in the encoding attribute of the XML declaration in a PROPFIND request.

Reference

http://intevydis.blogspot.com/2010/01/sun-java-system-web-server-70-webdav.html http://www.securityfocus.com/bid/37910 https://exchange.xforce.ibmcloud.com/vulnerabilities/55812