Description

Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consumption) via a request that contains many parameters and parameter values, a different vulnerability than CVE-2011-4858.

Remediation

References

CVE-2012-0022

Related Vulnerabilities

WordPress Plugin Adavnced Video embed Local File Inclusion (1.0)

WordPress Plugin WP Link To Us Multiple Cross-Site Scripting Vulnerabilities (2.0)

WordPress Plugin mb.YTPlayer for background videos Unspecified Vulnerability (1.7.2)

WordPress Plugin Mapplic-Custom Interactive Map Server-Side Request Forgery (6.1)

Play Framework Out-of-bounds Write Vulnerability (CVE-2020-27196)

Severity

Medium

Classification

CVE-2012-0022

Tags

Missing Update Known Vulnerabilities