Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remote attackers to cause a denial of service (resource consumption) via a malformed chunk size in chunked transfer coding of a request during the streaming of data.
Vector
NETWORK
Complexity
LOW
Authentication
NONE
Confidentiality
NONE
Integrity
NONE
Availability
PARTIAL
Apache Software Foundation Tomcat 8.0.1
Apache Software Foundation Tomcat 8.0.0 release candidate 5
Apache Software Foundation Tomcat 8.0.0 Release Candidate 2
Apache Software Foundation Tomcat 8.0.0 release candidate 10
Apache Software Foundation Tomcat 8.0.0 Release Candidate 1
Apache Tomcat 7.0.52 (not an official CPE)
Apache Software Foundation Tomcat 7.0.50
Apache Software Foundation Tomcat 7.0.49
Apache Software Foundation Tomcat 7.0.48
Apache Software Foundation Tomcat 7.0.47
Apache Software Foundation Tomcat 7.0.46
Apache Software Foundation Tomcat 7.0.45
Apache Software Foundation Tomcat 7.0.44
Apache Software Foundation Tomcat 7.0.43
Apache Software Foundation Tomcat 7.0.42
Apache Software Foundation Tomcat 7.0.41
Apache Software Foundation Tomcat 7.0.40
Apache Software Foundation Tomcat 7.0.39
Apache Software Foundation Tomcat 7.0.38
Apache Software Foundation Tomcat 7.0.37
Apache Software Foundation Tomcat 7.0.36
Apache Software Foundation Tomcat 7.0.35
Apache Software Foundation Tomcat 7.0.34
Apache Software Foundation Tomcat 7.0.33
Apache Software Foundation Tomcat 7.0.32
Apache Software Foundation Tomcat 7.0.31
Apache Software Foundation Tomcat 7.0.30
Apache Software Foundation Tomcat 7.0.29
Apache Software Foundation Tomcat 7.0.28
Apache Software Foundation Tomcat 7.0.27
Apache Software Foundation Tomcat 7.0.26
Apache Software Foundation Tomcat 7.0.25
Apache Software Foundation Tomcat 7.0.24
Apache Software Foundation Tomcat 7.0.23
Apache Software Foundation Tomcat 7.0.22
Apache Software Foundation Tomcat 7.0.21
Apache Software Foundation Tomcat 7.0.20
Apache Software Foundation Tomcat 7.0.19
Apache Software Foundation Tomcat 7.0.18
Apache Software Foundation Tomcat 7.0.17
Apache Software Foundation Tomcat 7.0.16
Apache Software Foundation Tomcat 7.0.15
Apache Software Foundation Tomcat 7.0.14
Apache Software Foundation Tomcat 7.0.13
Apache Software Foundation Tomcat 7.0.12
Apache Software Foundation Tomcat 7.0.11
Apache Software Foundation Tomcat 7.0.10
Apache Software Foundation Tomcat 7.0.9
Apache Software Foundation Tomcat 7.0.8
Apache Software Foundation Tomcat 7.0.7
Apache Software Foundation Tomcat 7.0.6
Apache Software Foundation Tomcat 7.0.5
Apache Software Foundation Tomcat 7.0.4 beta
Apache Software Foundation Tomcat 7.0.4
Apache Software Foundation Tomcat 7.0.3
Apache Software Foundation Tomcat 7.0.2 beta
Apache Software Foundation Tomcat 7.0.2
Apache Software Foundation Tomcat 7.0.1
Apache Software Foundation Tomcat 7.0.0 beta
Apache Software Foundation Tomcat 7.0.0
Apache Tomcat 6.0.39 (not an official CPE)
Apache Software Foundation Tomcat 6.0.37
Apache Software Foundation Tomcat 6.0.36
Apache Software Foundation Tomcat 6.0.35
Apache Software Foundation Tomcat 6.0.33
Apache Software Foundation Tomcat 6.0.32
Apache Software Foundation Tomcat 6.0.31
Apache Software Foundation Tomcat 6.0.30
Apache Software Foundation Tomcat 6.0.29
Apache Software Foundation Tomcat 6.0.28
Apache Software Foundation Tomcat 6.0.27
Apache Software Foundation Tomcat 6.0.26
Apache Software Foundation Tomcat 6.0.24
Apache Software Foundation Tomcat 6.0.20
Apache Software Foundation Tomcat 6.0.18
Apache Software Foundation Tomcat 6.0.19
Apache Software Foundation Tomcat 6.0.17
Apache Software Foundation Tomcat 6.0.16
Apache Software Foundation Tomcat 6.0.15
Apache Software Foundation Tomcat 6.0.14
Apache Software Foundation Tomcat 6.0.13
Apache Software Foundation Tomcat 6.0.12
Apache Software Foundation Tomcat 6.0.11
Apache Software Foundation Tomcat 6.0.10
Apache Software Foundation Tomcat 6.0.9 beta
Apache Software Foundation Tomcat 6.0.9
Apache Software Foundation Tomcat 6.0.8 alpha
Apache Software Foundation Tomcat 6.0.8
Apache Software Foundation Tomcat 6.0.7
Apache Software Foundation Tomcat 6.0.7 alpha
Apache Software Foundation Tomcat 6.0.7 beta
Apache Software Foundation Tomcat 6.0.6 alpha
Apache Software Foundation Tomcat 6.0.6
Apache Software Foundation Tomcat 6.0.5
Apache Software Foundation Tomcat 6.0.4 alpha
Apache Software Foundation Tomcat 6.0.4
Apache Software Foundation Tomcat 6.0.3
Apache Software Foundation Tomcat 6.0.2 beta
Apache Software Foundation Tomcat 6.0.2 alpha
Apache Software Foundation Tomcat 6.0.2
Apache Software Foundation Tomcat 6.0.1 alpha
Apache Software Foundation Tomcat 6.0.1
Apache Software Foundation Tomcat 6.0.0 alpha
Apache Software Foundation Tomcat 6.0.0
Apache Software Foundation Tomcat 6.0
Apache Software Foundation Tomcat 6
Apache Tomcat 8.0.3 (not an official CPE)