Description

Apache Tomcat 6.x before 6.0.37 and 7.x before 7.0.30 does not properly handle chunk extensions in chunked transfer coding, which allows remote attackers to cause a denial of service by streaming data.

Remediation

References

CVE-2012-3544

Related Vulnerabilities

Oracle JRE CVE-2012-1541 Vulnerability (CVE-2012-1541)

WordPress Plugin Wow Forms-create any form with custom style SQL Injection (3.1.3)

WordPress Plugin Tinymce Thumbnail Gallery 'href' Parameter Information Disclosure (1.0.7)

MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2006-0442)

Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2006-0114)

Severity

Medium

Classification

CVE-2012-3544 CWE-20

Tags

Missing Update Known Vulnerabilities