mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-19 17:30:12 +00:00
788 B
788 B
CVE-2014-0095
Description
java/org/apache/coyote/ajp/AbstractAjpProcessor.java in Apache Tomcat 8.x before 8.0.4 allows remote attackers to cause a denial of service (thread consumption) by using a "Content-Length: 0" AJP request to trigger a hang in request processing.
POC
Reference
- http://seclists.org/fulldisclosure/2014/May/134
- http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
Github
No PoCs found on GitHub currently.