New Search

HP-UX Running Apache Remote Denial of Service (DoS) Execution of Arbitrary Code and other vulnerabilities

oval:org.mitre.oval:def:19218

java/org/apache/coyote/http11/InternalNioInputBuffer.java in the HTTP NIO connector in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.28 does not properly restrict the request-header size which allows remote attackers to cause a denial of service (memory consumption) via a large amount of header data.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • HP-UX 11
Class:
vulnerability
Reference(s):
  • CVE-2012-2733
Product(s):