Description
org/apache/tomcat/util/net/NioEndpoint.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.28, when the NIO connector is used in conjunction with sendfile and HTTPS, allows remote attackers to cause a denial of service (infinite loop) by terminating the connection during the reading of a response.
Remediation
References
Related Vulnerabilities
MediaWiki Incorrect Authorization Vulnerability (CVE-2021-36132)
Jenkins CVE-2023-27902 Vulnerability (CVE-2023-27902)
MySQL CVE-2018-3080 Vulnerability (CVE-2018-3080)
phpBB URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2015-3880)
SharePoint Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-3895)