Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2014-0230

Опубликовано: 07 июн. 2015
Источник: debian
EPSS Низкий

Описание

Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the reading of an entire request body, which allows remote attackers to cause a denial of service (thread consumption) via a series of aborted upload attempts.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
tomcat6fixed6.0.41-3package
tomcat7fixed7.0.55-1package
tomcat7fixed7.0.28-4+deb7u3wheezypackage
tomcat8fixed8.0.9-1package

Примечания

  • tomcat6 in jessie only builds the servlet API classes

  • https://svn.apache.org/viewvc?view=revision&revision=1603781 (7.x)

  • https://svn.apache.org/viewvc?view=revision&revision=1659537 (6.x)

EPSS

Процентиль: 91%
0.06351
Низкий

Связанные уязвимости

ubuntu
около 10 лет назад

Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the reading of an entire request body, which allows remote attackers to cause a denial of service (thread consumption) via a series of aborted upload attempts.

redhat
около 11 лет назад

Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the reading of an entire request body, which allows remote attackers to cause a denial of service (thread consumption) via a series of aborted upload attempts.

nvd
около 10 лет назад

Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the reading of an entire request body, which allows remote attackers to cause a denial of service (thread consumption) via a series of aborted upload attempts.

github
больше 3 лет назад

Uncontrolled Resource Consumption in Apache Tomcat

suse-cvrf
почти 10 лет назад

Security update for tomcat6

EPSS

Процентиль: 91%
0.06351
Низкий