CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-05-23 23:14:03 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
c8d0b27a95da01ac2a8d3d5e884ef1c77259d7be
CVEs-PoC/2017/CVE-2017-5650.md
T
0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00

20 lines
1.1 KiB
Markdown
Raw Blame History

### [CVE-2017-5650](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5650)
![](https://img.shields.io/static/v1?label=Product&message=Apache%20Tomcat&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=8.5.0%20to%208.5.12%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=9.0.0.M1%20to%209.0.0.M18%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Denial%20of%20Service&color=brightgreen)
### Description
In Apache Tomcat 9.0.0.M1 to 9.0.0.M18 and 8.5.0 to 8.5.12, the handling of an HTTP/2 GOAWAY frame for a connection did not close streams associated with that connection that were currently waiting for a WINDOW_UPDATE before allowing the application to write more data. These waiting streams each consumed a thread. A malicious client could therefore construct a series of HTTP/2 requests that would consume all available processing threads.
### POC
#### Reference
- http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
#### Github
- https://github.com/ilmari666/cybsec
- https://github.com/m3n0sd0n4ld/uCVE
Reference in New Issue View Git Blame Copy Permalink