Description

The Catalina org.apache.catalina.connector.http package in Tomcat 4.0.x up to 4.0.3 allows remote attackers to cause a denial of service via several requests that do not follow the HTTP protocol, which causes Tomcat to reject later requests.

Remediation

References

CVE-2003-0866

Related Vulnerabilities

Grafana Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2021-43798)

Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5321)

Oracle JRE CVE-2013-2430 Vulnerability (CVE-2013-2430)

Drupal URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-13662)

WordPress Plugin Survey Maker-Best WordPress Survey SQL Injection (1.5.5)

Severity

Medium

Classification

CVE-2003-0866

Tags

Missing Update Known Vulnerabilities