Description
Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service (resource consumption) via a malformed chunk size in chunked transfer coding of a request during the streaming of data.
Remediation
References
Related Vulnerabilities
ATutor Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-12170)
WordPress Plugin Gallery Master-Responsive Photo Galleries & Albums Cross-Site Scripting (1.0.22)
WordPress Plugin File Manager Unspecified Vulnerability (3.0)
PostgreSQL Integer Overflow or Wraparound Vulnerability (CVE-2023-5869)