Description

The Web Console in Red Hat Enterprise Application Platform (EAP) before 6.4.4 and WildFly (formerly JBoss Application Server) allows remote attackers to cause a denial of service (memory consumption) via a large request header.

Remediation

References

CVE-2015-5220

Related Vulnerabilities

Magento Improper Authorization Vulnerability (CVE-2021-21022)

GlassFish CVE-2013-1508 Vulnerability (CVE-2013-1508)

ATutor Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-14981)

MediaWiki Other Vulnerability (CVE-2006-2895)

PHP Other Vulnerability (CVE-2006-4433)

Severity

Medium

Classification

CVE-2015-5220 CWE-119

Tags

Missing Update Known Vulnerabilities