WEB APPLICATION VULNERABILITIES Standard & Premium

Apache Tomcat Numeric Errors Vulnerability (CVE-2014-0099)

Description

Integer overflow in java/org/apache/tomcat/util/buf/Ascii.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4, when operated behind a reverse proxy, allows remote attackers to conduct HTTP request smuggling attacks via a crafted Content-Length HTTP header.

Remediation

References

Related Vulnerabilities

WordPress Plugin Theme Demo Import Arbitrary File Upload (1.1.0)

SharePoint Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-1202)

Envoy Proxy CVE-2023-27496 Vulnerability (CVE-2023-27496)

phpMyFAQ Improper Access Control Vulnerability (CVE-2023-2429)

WordPress Plugin WooCommerce Affiliate-Coupon Affiliates Cross-Site Request Forgery (4.11.3.3)

Severity

Medium

Classification

CVE-2014-0099

Tags

Missing Update Known Vulnerabilities