Description

Apache Tomcat 4.0.3, and possibly other versions before 4.1.3 beta, allows remote attackers to cause a denial of service (resource exhaustion) via a large number of requests to the server with null characters, which causes the working threads to hang.

Remediation

References

CVE-2002-0935

Related Vulnerabilities

Apache HTTP Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2010-1623)

Envoy Proxy CVE-2024-45807 Vulnerability (CVE-2024-45807)

Oracle Database Server CVE-2014-0378 Vulnerability (CVE-2014-0378)

WordPress Plugin Essential Blocks-Page Builder Gutenberg Blocks, Patterns & Templates Cross-Site Request Forgery (3.8.5)

Oracle Database Server CVE-2014-2406 Vulnerability (CVE-2014-2406)

Severity

Medium

Classification

CVE-2002-0935

Tags

Missing Update Known Vulnerabilities