Description

Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service (resource consumption) via a malformed chunk size in chunked transfer coding of a request during the streaming of data.

Remediation

References

CVE-2014-0075

Related Vulnerabilities

SharePoint CVE-2021-1717 Vulnerability (CVE-2021-1717)

Oracle JRE CVE-2014-0448 Vulnerability (CVE-2014-0448)

WordPress 4.5.x Denial of Service Vulnerability (4.5 - 4.5.13)

PHP Deserialization of Untrusted Data Vulnerability (CVE-2016-7124)

AngularJS Inefficient Regular Expression Complexity Vulnerability (CVE-2024-21490)

Severity

Medium

Classification

CVE-2014-0075

Tags

Missing Update Known Vulnerabilities