Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2012-0022

Опубликовано: 17 янв. 2012
Источник: redhat
CVSS2: 5

Описание

Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consumption) via a request that contains many parameters and parameter values, a different vulnerability than CVE-2011-4858.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Certificate System 7.3TomcatWill not fix
Red Hat Developer Suite v.3PlatformWill not fix
Red Hat Satellite 5.4tomcat5Affected
JBEWP 5 for RHEL 5jbosswebFixedRHSA-2012:007631.01.2012
JBEWP 5 for RHEL 6jbosswebFixedRHSA-2012:007631.01.2012
JBoss Communications Platform 5.1FixedRHSA-2012:007831.01.2012
JBoss Enterprise BRMS Platform 5.1FixedRHSA-2012:032522.02.2012
Red Hat Enterprise Linux 5tomcat5FixedRHSA-2012:047411.04.2012
Red Hat Enterprise Linux 6tomcat6FixedRHSA-2012:047511.04.2012
Red Hat JBoss Enterprise Application Platform 5.1FixedRHSA-2012:007531.01.2012

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
https://bugzilla.redhat.com/show_bug.cgi?id=783359tomcat: large number of parameters DoS

5 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2012-0022

ubuntu
больше 13 лет назад

Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consumption) via a request that contains many parameters and parameter values, a different vulnerability than CVE-2011-4858.

nvd логотип

CVE-2012-0022

nvd
больше 13 лет назад

Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consumption) via a request that contains many parameters and parameter values, a different vulnerability than CVE-2011-4858.

debian логотип

CVE-2012-0022

debian
больше 13 лет назад

Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7 ...

github логотип

GHSA-8h2q-qm9x-55jc

github
около 3 лет назад

Denial of Service in Apache Tomcat

oracle-oval логотип

ELSA-2012-0475

oracle-oval
около 13 лет назад

ELSA-2012-0475: tomcat6 security update (MODERATE)

5 Medium

CVSS2