Description
Apache Tomcat 6.x before 6.0.37 and 7.x before 7.0.30 does not properly handle chunk extensions in chunked transfer coding, which allows remote attackers to cause a denial of service by streaming data.
Remediation
References
Related Vulnerabilities
WordPress Plugin CM Table Of Contents Cross-Site Scripting (1.0.7)
IBM WebSEAL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-1886)
Internet Information Services CVE-2002-1790 Vulnerability (CVE-2002-1790)