virus logo FortiClient Vulnerability

Apache Tomcat CVE-2012-2733 Input Validation Bypass Vulnerability

description-logoDescription

The checks that limited the permitted size of request headers were implemented too late in the request parsing process for the HTTP NIO connector. This enabled a malicious user to trigger an OutOfMemoryError by sending a single request with very large headers.

affected-products-logoAffected Applications

Apache Tomcat

CVE References

CVE-2012-2733

Other References

http://tomcat.apache.org/security.html
ID 54581
Created Jan 17, 2020
Description
Updated		 Dec 14, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Linux
Vendor Apache
Patch manual
Application Apache Tomcat