Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2011-4858

Опубликовано: 28 дек. 2011
Источник: redhat
CVSS2: 5
EPSS Высокий

Описание

Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=750521tomcat: hash table collisions CPU usage DoS (oCERT-2011-003)

EPSS

Процентиль: 99%
0.766
Высокий

5 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2011-4858

ubuntu
больше 14 лет назад

Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.

nvd логотип

CVE-2011-4858

nvd
больше 14 лет назад

Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.

debian логотип

CVE-2011-4858

debian
больше 14 лет назад

Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 ...

github логотип

GHSA-wr3m-gw98-mc3j

github
почти 4 года назад

Improper Input Validation in Apache Tomcat

oracle-oval логотип

ELSA-2012-0475

oracle-oval
почти 14 лет назад

ELSA-2012-0475: tomcat6 security update (MODERATE)

EPSS

Процентиль: 99%
0.766
Высокий

5 Medium

CVSS2