Description
Tomcat 4.0 through 4.1.12, using mod_jk 1.2.1 module on Apache 1.3 through 1.3.27, allows remote attackers to cause a denial of service (desynchronized communications) via an HTTP GET request with a Transfer-Encoding chunked field with invalid values.
Remediation
References
Related Vulnerabilities
Microsoft SQL Server CVE-2023-32028 Vulnerability (CVE-2023-32028)
ZenCart Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-11675)
Joomla! Core 3.x.x Multiple Vulnerabilities (3.7.0 - 3.8.3)
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2016-7065)
WordPress Plugin FeedWordPress Multiple Vulnerabilities (2015.0426)