Description

Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service (resource consumption) via a malformed chunk size in chunked transfer coding of a request during the streaming of data.

Remediation

References

CVE-2014-0075

Related Vulnerabilities

WordPress Plugin Helpful Cross-Site Scripting (4.4.58)

MySQL CVE-2019-2741 Vulnerability (CVE-2019-2741)

SugarCRM Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2009-2978)

MediaWiki Other Vulnerability (CVE-2006-2611)

WordPress Plugin SiteGround Security Security Bypass (1.2.5)

Severity

Medium

Classification

CVE-2014-0075

Tags

Missing Update Known Vulnerabilities