ID CVE-2005-0808
Summary Apache Tomcat before 5.x allows remote attackers to cause a denial of service (application crash) via a crafted AJP12 packet to TCP port 8007.
References
Vulnerable Configurations
  • Apache Software Foundation Tomcat 3.0
    cpe:2.3:a:apache:tomcat:3.0
  • Apache Software Foundation Tomcat 3.1
    cpe:2.3:a:apache:tomcat:3.1
  • Apache Software Foundation Tomcat 3.1.1
    cpe:2.3:a:apache:tomcat:3.1.1
  • Apache Software Foundation Tomcat 3.2
    cpe:2.3:a:apache:tomcat:3.2
  • Apache Software Foundation Tomcat 3.2.1
    cpe:2.3:a:apache:tomcat:3.2.1
  • Apache Software Foundation Tomcat 3.2.2 Beta2
    cpe:2.3:a:apache:tomcat:3.2.2:beta2
  • Apache Software Foundation Tomcat 3.2.3
    cpe:2.3:a:apache:tomcat:3.2.3
  • Apache Software Foundation Tomcat 3.2.4
    cpe:2.3:a:apache:tomcat:3.2.4
  • Apache Software Foundation Tomcat 3.3
    cpe:2.3:a:apache:tomcat:3.3
  • Apache Software Foundation Tomcat 3.3.1
    cpe:2.3:a:apache:tomcat:3.3.1
  • Apache Software Foundation Tomcat 3.3.1a
    cpe:2.3:a:apache:tomcat:3.3.1a
CVSS
Base: 5.0 (as of 10-06-2005 - 19:22)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
nessus via4
NASL family Web Servers
NASL id TOMCAT_MALFORMED_REQUEST_DOS.NASL
description According to its banner, the version of Apache Tomcat running on the remote host is affected by a denial of service vulnerability due to a failure to handle malformed input. By submitting a specially crafted AJP12 request, an unauthenticated attacker can cause Tomcat to stop responding. At present, details on the specific nature of such requests are not generally known.
last seen 2019-02-21
modified 2018-08-01
plugin id 17322
published 2005-03-15
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=17322
title Apache Tomcat AJP12 Protocol Malformed Packet Remote DoS
refmap via4
bid 12795
cert-vn VU#204710
confirm
xf tomcat-manager-ajp12-dos(19681)
Last major update 05-09-2008 - 16:47
Published 02-05-2005 - 00:00
Last modified 10-07-2017 - 21:32
Back to Top