Description

Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service (resource consumption) via a malformed chunk size in chunked transfer coding of a request during the streaming of data.

Remediation

References

CVE-2014-0075

Related Vulnerabilities

Apache Tomcat WAR file directory traversal vulnerability

Oracle JRE CVE-2013-5849 Vulnerability (CVE-2013-5849)

WordPress Plugin WP Activity Log Cross-Site Request Forgery (4.1.3.2)

WordPress 5.4.x Multiple Vulnerabilities (5.4 - 5.4.6)

Dolibarr Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-11825)

Severity

Medium

Classification

CVE-2014-0075

Tags

Missing Update Known Vulnerabilities