Description
Spooler in Apache Foundation James 2.2.0 allows local users to cause a denial of service (memory consumption) by triggering various error conditions in the retrieve function, which prevents a lock from being released and causes a memory leak.
References (3)
Core 3
Core References
Various Sources x_refsource_misc
http://issues.apache.org/jira/browse/JAMES-268
Various Sources x_refsource_confirm
http://james.apache.org/changelog.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/15765
Scores
EPSS
0.0056
EPSS Percentile
42.9%
Details
Status
published
Products (2)
apache/james
2.2.0
org.apache.james/james-server
0 - 2.2.0Maven
Published
Dec 31, 2004
Tracked Since
Feb 18, 2026