|
Apache Tomcat AJP Connector Information Disclosure Vulnerability
Apache Tomcat is prone to an information-disclosure vulnerability because of an error in the AJP connector that causes inaccurate chunk lengths to be delivered by 'send_body_chunks' AJP messages. Attackers can leverage this issue to obtain potentially sensitive data that could aid in other attacks. Tomcat 5.5.15 is vulnerable; other versions may also be affected. |
|
|
Privacy Statement |
