mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-08 01:56:40 +02:00
0xMarcio
788 B
788 B
CVE-2014-0095
Description
java/org/apache/coyote/ajp/AbstractAjpProcessor.java in Apache Tomcat 8.x before 8.0.4 allows remote attackers to cause a denial of service (thread consumption) by using a "Content-Length: 0" AJP request to trigger a hang in request processing.
POC
Reference
- http://seclists.org/fulldisclosure/2014/May/134
- http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
Github
No PoCs found on GitHub currently.