Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Apache mod_jk < 1.2.1 Chunked Encoding DoS

High

Synopsis

The remote server is running a web server that is affected by a vulnerability

Description

The remote Apache server is running a version of mod_jk which is vulnerable in the way it processes chunked encoded requests. This may allow an attacker to desynchronise Apache and Tomcat which would prevent this host from running properly.

Solution

Upgrade to mod_jk 1.2.1 or higher.