Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Apache Tomcat 5.5.x < 5.5.35 Hash Collision Denial of Service

Medium

Synopsis

The remote web server is affected by a denial of service vulnerability.

Description

Versions of Tomcat 5.x earlier than 5.5.35 are potentially affected by a denial of service vulnerability. Large numbers of crafted form parameters can cause excessive CPU consumption due to hash collisions.

Solution

Upgrade to Apache Tomcat 5.5.35 or later.