CVE-2011-1317

Name of the Vulnerable Software and Affected Versions IBM WebSphere Application Server versions 6.1.0.x through 6.1.0.36 IBM WebSphere Application Server versions 7.x through 7.0.0.14

Description A memory leak in the JavaServer Pages (JSP) component allows remote attackers to cause a denial of service by sending many JSP requests that trigger large responses.

Recommendations For IBM WebSphere Application Server versions 6.1.0.x through 6.1.0.36, update to version 6.1.0.37 or later. For IBM WebSphere Application Server versions 7.x through 7.0.0.14, update to version 7.0.0.15 or later.