Apache.Tomcat.Hash.Collision.DoS
Description
This indicates an attempt to exploit a Denial of Service vulnerability in Apache Tomcat.
The vulnerability is due to predictable collisions in the underlying hashing algorithms for storage of key/value pairs in hash data structures. A remote attack may be able to exploit this to cause a denial of service condition on the affected system.
Affected Products
Apache Tomcat 7.0.22 and earlier versions
Apache Tomcat 6.0.35 and earlier versions
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply the latest update from the vendor.
http://tomcat.apache.org/
http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3C4EFB9800.5010106@apache.org%3E
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |