CVE-2004-2540 - Disgruntled Butterfly Fish

Description

readObject in (1) Java Runtime Environment (JRE) and (2) Software Development Kit (SDK) 1.4.0 through 1.4.2_05 allows remote attackers to cause a denial of service (JVM unresponsive) via crafted serialized data.

Reference

http://archives.neohapsis.com/archives/bugtraq/2005-04/0113.html http://sunsolve.sun.com/searchproxy/document.do?assetkey=1-26-57707-1 http://secunia.com/advisories/13271/ https://exchange.xforce.ibmcloud.com/vulnerabilities/20027