Back to search

USN-1359-1: Tomcat vulnerabilities

Severity CVSS Published Added Modified
5 (AV:N/AC:L/Au:N/C:N/I:N/A:P) January 18, 2012 May 06, 2013 March 07, 2014

Available Exploits 

Description

Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consumption) via a request that contains many parameters and parameter values, a different vulnerability than CVE-2011-4858.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

  • libtomcat6-java on Ubuntu Linux 10.04

    Upgrade libtomcat6-java for Ubuntu 10.04 LTS

    Use `apt-get upgrade` to upgrade libtomcat6-java to the latest version

  • libtomcat6-java on Ubuntu Linux 10.10

    Upgrade libtomcat6-java for Ubuntu 10.10

    Use `apt-get upgrade` to upgrade libtomcat6-java to the latest version

  • libtomcat6-java on Ubuntu Linux 11.04

    Upgrade libtomcat6-java for Ubuntu 11.04

    Use `apt-get upgrade` to upgrade libtomcat6-java to the latest version

  • libtomcat6-java on Ubuntu Linux 11.10

    Upgrade libtomcat6-java for Ubuntu 11.10

    Use `apt-get upgrade` to upgrade libtomcat6-java to the latest version

Related Vulnerabilities