vulnerability

HP-UX: CVE-2016-3092: Tomcat-based Servlet Engine, Remote Denial of Service (DoS), URL Redirection

Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Jul 4, 2016
Added
Aug 11, 2017
Modified
Jan 8, 2018

Description

The MultipartStream class in Apache Commons Fileupload before 1.3.2, as used in Apache Tomcat 7.x before 7.0.70, 8.x before 8.0.36, 8.5.x before 8.5.3, and 9.x before 9.0.0.M7 and other products, allows remote attackers to cause a denial of service (CPU consumption) via a long boundary string.

Solution(s)

hpux-update-hpuxws22tomcat-tomcathpux-update-hpuxws22tomcat-tomcat2
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.