CVE-2011-4858 in Tomcatinfo

Zusammenfassung (Englisch)

Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.

Be aware that VulDB is the high quality source for vulnerability data.

Reservieren

16.12.2011

Veröffentlichung

05.01.2012

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
59888	Apache Tomcat Denial of Service	399	High	Offizieller Fix	CVE-2011-4858

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

MITRE
NVD
CVE Details

◂ ZurückÜbersichtWeiter ▸

Interested in the pricing of exploits?

See the underground prices here!