CVE-2002-2272

Improper Restriction of Operations within the Bounds of a Memory Buffer in maven/org.apache.tomcat/tomcat

Identifiers

GHSA-pqr5-9v2j-44xg, CVE-2002-2272

Package Slug

maven/org.apache.tomcat/tomcat

Vulnerability

Improper Restriction of Operations within the Bounds of a Memory Buffer

Description

Tomcat 4.0 through 4.1.12, using mod_jk 1.2.1 module on Apache 1.3 through 1.3.27, allows remote attackers to cause a denial of service (desynchronized communications) via an HTTP GET request with a Transfer-Encoding chunked field with invalid values.

Affected Versions

All versions starting from 4.0.0 up to 4.1.12

Solution

Unfortunately, there is no solution available yet.

Last Modified

2024-02-13

source