Spring Framework versions 1.1.0 through 2.5.6 and 3.0.0.M1 through 3.0.0.M2 suffer from a remote denial of service vulnerability.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/77004/springframework-dos.txt
Source: https://packetstormsecurity.com/files/77004/Spring-Framework-Denial-Of-Service.html