CVE-2007-6059

Name of the Vulnerable Software and Affected Versions Javamail (affected versions not specified)

Description The issue arises when Javamail fails to properly handle a series of invalid login attempts where the same e-mail address is used as both the username and password. Specifically, if the domain portion of the e-mail address triggers a Java UnknownHostException error, it can lead to a denial of service due to connection pool exhaustion. This occurs when a large number of requests are made, resulting in a SQLNestedException. It's worth noting that Sun disputes this issue, claiming the report references non-existent source code and files in the mentioned products.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.