CVE-2014-0075 in Communications Policy Managementinfo

Zusammenfassung (Englisch)

Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service (resource consumption) via a malformed chunk size in chunked transfer coding of a request during the streaming of data.

Be aware that VulDB is the high quality source for vulnerability data.

Reservieren

03.12.2013

Veröffentlichung

31.05.2014

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
92851	Oracle Communications Policy Management Tomcat Denial of Service	189	Nicht definiert	Offizieller Fix	CVE-2014-0075
13384	Apache Tomcat Chunked HTTP Denial of Service	189	Nicht definiert	Offizieller Fix	CVE-2014-0075

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

◂ ZurückÜbersichtWeiter ▸

Interested in the pricing of exploits?

See the underground prices here!