Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Apache TomEE 7.x < 7.0.1 DoS

High

Synopsis

The remote web server is running Apache TomEE.

Description

The remote web server is running Apache TomEE 7.x prior to 7.0.1 and is affected by a flaw in 'boundaries' within content-type headers when handling file upload requests. This may allow a remote attacker to cause a process linked against the library to become unresponsive.

Solution

Upgrade Apache TomEE to version 7.0.1 or higher.