Technote (troubleshooting)
Problem(Abstract)
The clients and the server of IBM CommonStore for SAP V8.4 contain JREs that are affected by the following security alert:
http://www.ibm.com/developerworks/java/jdk/alerts/cve-2010-4476.html
Symptom
Java runtime environment (JRE) hangs when it tries to convert "2.2250738585072012e-308" to a binary floating-point number or if the number is written without scientific notation (324 decimal places). As a result, JRE might not respond, might loop infinitely, or might crash, and thus cause a denial-of-service attack (DoS).
Diagnosing the problem
Follow the instructions in section "Verification" at:
http://www.ibm.com/developerworks/java/jdk/alerts/cve-2010-4476.html
Resolving the problem
Follow the steps that are described in section "Patch availability" at:
http://www.ibm.com/developerworks/java/jdk/alerts/cve-2010-4476.html
Related information
Critical security vulnerability alert - Security Alert
ECM Alert - Denial of Service Security Exposure
Product Alias/Synonym
CSSAP
Rate this page:
Copyright and trademark information
IBM, the IBM logo and ibm.com are trademarks of International Business Machines Corp., registered in many jurisdictions worldwide. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on the Web at "Copyright and trademark information" at www.ibm.com/legal/copytrade.shtml.