- Home
- CVEs with nessus.description==The remote host is affected by the vulnerability described in GLSA-200906-04 (Apache Tomcat JK Connector: Information disclosure)
The Red Hat Security Response Team discovered that mod_jk does not properly handle (1) requests setting the 'Content-Length' header while not providing data and (2) clients sending repeated requests very quickly.
Impact :
A remote attacker could send specially crafted requests or a large number of requests at a time, possibly resulting in the disclosure of a response intended for another client.
Workaround :
There is no known workaround at this time.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top