This host is running Apache Tomcat and is prone to denial of service vulnerability.

Successful exploitation will allow remote attackers to cause denial of service condition. Impact Level: Application

Upgrade to 7.0.51, 8.0.2 or later, http://tomcat.apache.org

The flaw is due to an improper handling of Content-Type HTTP header for multipart requests

Apache Tomcat version 7.0.x before 7.0.51 and 8.0.0 before 8.0.2

Get the installed version of Apache Tomcat with the help of detect NVT and check the version is vulnerable or not.

• http://blog.spiderlabs.com/2014/02/cve-2014-0050-exploit-with-boundaries-loops-without-boundaries.html
• http://osvdb.org/102945
• http://secunia.com/advisories/56830
• http://www.exploit-db.com/exploits/31615
• http://xforce.iss.net/xforce/xfdb/90987

---

Updated on 2015-03-25