CVE-2012-3544

NONECVSS 0.0

0.0

Apache Tomcat 6.x before 6.0.37 and 7.x before 7.0.30 does not properly handle chunk extensions in chunked transfer coding, which allows remote attackers to cause a denial of service by streaming data.

🔗 References (42)

secalert@redhathttp://archives.neohapsis.com/archives/bugtraq/2013-05/0042.html
secalert@redhathttp://seclists.org/fulldisclosure/2014/Dec/23
secalert@redhathttp://svn.apache.org/viewvc/tomcat/tc6.0.x/trunk/java/org/apache/coyote/http11/filters/ChunkedInputFilter.java?r1=1476592&r2=1476591&pathrev=1476592
secalert@redhathttp://svn.apache.org/viewvc?view=revision&revision=1378702
secalert@redhathttp://svn.apache.org/viewvc?view=revision&revision=1378921
secalert@redhathttp://svn.apache.org/viewvc?view=revision&revision=1476592
secalert@redhathttp://tomcat.apache.org/security-6.html
secalert@redhathttp://tomcat.apache.org/security-7.html
secalert@redhathttp://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html
secalert@redhathttp://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
secalert@redhathttp://www.securityfocus.com/archive/1/534161/100/0/threaded
secalert@redhathttp://www.securityfocus.com/bid/59797
secalert@redhathttp://www.securityfocus.com/bid/64758
secalert@redhathttp://www.ubuntu.com/usn/USN-1841-1
secalert@redhathttp://www.vmware.com/security/advisories/VMSA-2014-0012.html

Is Your Infrastructure Affected by CVE-2012-3544?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2012-3544

📅 Published

🔄 Last Modified

🔗 References (42)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2012-3544?