Description

The following problems were fixed in Apache Tomcat version 7.0.28:

  • Important: Denial of service CVE-2012-2733
    The checks that limited the permitted size of request headers were implemented too late in the request parsing process for the HTTP NIO connector. This enabled a malicious user to trigger an OutOfMemoryError by sending a single request with very large headers.This was fixed in revision 1350301.
  • Important: Denial of service CVE-2012-4534
    When using the NIO connector with sendfile and HTTPS enabled, if a client breaks the connection while reading the response an infinite loop is entered leading to a denial of service. This was originally reported as bug 52858. This was fixed in revision 1340218.


Affected Apache Tomcat versions (7.0.0 - 7.0.27).

Remediation

Upgrade to the latest version of Apache Tomcat.

References

CVE-2012-2733

CVE-2012-4534

Apache Tomcat 7.x vulnerabilities

Related Vulnerabilities

WordPress Plugin Hostel Cross-Site Scripting (1.1.3)

WordPress Plugin WooCommerce Cross-Site Request Forgery (3.6.4)

TCExam Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-20111)

WordPress Plugin Coming Soon & Maintenance Mode Page Cross-Site Request Forgery (1.57)

WordPress Plugin Video Gallery /w YouTube, Vimeo Arbitrary File Upload (8.48)

Severity

High

Classification

CVE-2012-2733 CVE-2012-4534 CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Tags

Configuration Denial Of Service Missing Update