Description

The Catalina org.apache.catalina.connector.http package in Tomcat 4.0.x up to 4.0.3 allows remote attackers to cause a denial of service via several requests that do not follow the HTTP protocol, which causes Tomcat to reject later requests.

Remediation

References

CVE-2003-0866

Related Vulnerabilities

OpenSSL Possible denial of service attack Vulnerability (CVE-2020-1971)

Moodle Server-Side Request Forgery (SSRF) Vulnerability (CVE-2023-35133)

Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2018-1000117)

Magento Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2020-9690)

WordPress Plugin WP-HR Manager:The Human Resources Unspecified Vulnerability (2.9.4)

Severity

Medium

Classification

CVE-2003-0866

Tags

Missing Update Known Vulnerabilities