icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Apache Tomcat 6.0.x < 6.0.32 Denial of Service Vulnerability

Medium

Synopsis

The remote web server is vulnerable to a denial of service attack.

Description

Versions of Tomcat 6.x earlier than 6.0.32 are potentially affected by a denial of service vulnerability because the NIO connector expands its buffer endlessly during request line processing.

Solution

Upgrade to Apache Tomcat 6.0.32 or later.