CVE-2010-2227

Apache Tomcat 5.5.0 through 5.5.29, 6.0.0 through 6.0.27, and 7.0.0 beta does not properly handle an invalid Transfer-Encoding header, which allows remote attackers to cause a denial of service (application outage) or obtain sensitive information via a crafted header that interferes with "recycling of a buffer."

Published Bysecalert@redhat.com

Published DateJul 13, 2010, 17:30

Affected Versions(3)

org.apache.tomcat:tomcat(Maven)

Introduced7.0.0

Fixed7.0.2

LimitN/A

org.apache.tomcat:tomcat(Maven)

Introduced5.5.0

Fixed5.5.30

LimitN/A

org.apache.tomcat:tomcat(Maven)

Introduced6.0.0

Fixed6.0.28

LimitN/A

Package (Ecosystem)	Introduced	Fixed	Limit
org.apache.tomcat:tomcat(Maven)	7.0.0	7.0.2	N/A
org.apache.tomcat:tomcat(Maven)	5.5.0	5.5.30	N/A
org.apache.tomcat:tomcat(Maven)	6.0.0	6.0.28	N/A

Weakness Type (CWE):CWE-119

CVSS Metrics

Base Score

6.4

Vector String

AV:N/AC:L/Au:N/C:P/I:N/A:P

Base Severity

Version

2.0

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality (C)

PARTIAL

Integrity (I)

NONE

Availability (A)

PARTIAL

References

Weakness Type (CWE):CWE-119

CVSS Metrics

Base Score

6.4

Vector String

AV:N/AC:L/Au:N/C:P/I:N/A:P

Base Severity

Version

2.0

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality (C)

PARTIAL

Integrity (I)

NONE

Availability (A)

PARTIAL