FreeBSD : tomcat -- Denial of Service (4ca26574-2a2c-11e2-99c7-00a0d181e71d)
Medium Nessus Plugin ID 62885
The remote FreeBSD host is missing one or more security-related updates.
The Apache Software Foundation reports : The checks that limited the permitted size of request headers were implemented too late in the request parsing process for the HTTP NIO connector. This enabled a malicious user to trigger an OutOfMemoryError by sending a single request with very large headers. This issue was identified by Josh Spiewak.