• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Apache Tomcat Java AJP Connector Invalid Header Denial of Service Vulnerability

Solution:
Updates are available. Please see the references for more information.


Ubuntu Ubuntu Linux 8.10 powerpc

• Ubuntu libservlet2.5-java_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libservlet2.5-ja va_6.0.18-0ubuntu3.2_all.deb


• Ubuntu libtomcat6-java_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libtomcat6-java_ 6.0.18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-admin_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-admin_6. 0.18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-common_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-common_6 .0.18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-docs_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-docs_6.0 .18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-examples_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-examples _6.0.18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-user_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-user_6.0 .18-0ubuntu3.2_all.deb


• Ubuntu tomcat6_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6_6.0.18-0 ubuntu3.2_all.deb

Ubuntu Ubuntu Linux 9.04 sparc

• Ubuntu libservlet2.5-java-doc_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libservlet2.5-ja va-doc_6.0.18-0ubuntu6.1_all.deb


• Ubuntu libservlet2.5-java_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libservlet2.5-ja va_6.0.18-0ubuntu6.1_all.deb


• Ubuntu libtomcat6-java_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libtomcat6-java_ 6.0.18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-admin_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-admin_6. 0.18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-common_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-common_6 .0.18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-docs_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-docs_6.0 .18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-examples_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-examples _6.0.18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-user_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-user_6.0 .18-0ubuntu6.1_all.deb


• Ubuntu tomcat6_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6_6.0.18-0 ubuntu6.1_all.deb

Ubuntu Ubuntu Linux 9.04 lpia

• Ubuntu libservlet2.5-java-doc_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libservlet2.5-ja va-doc_6.0.18-0ubuntu6.1_all.deb


• Ubuntu libservlet2.5-java_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libservlet2.5-ja va_6.0.18-0ubuntu6.1_all.deb


• Ubuntu libtomcat6-java_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libtomcat6-java_ 6.0.18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-admin_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-admin_6. 0.18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-common_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-common_6 .0.18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-docs_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-docs_6.0 .18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-examples_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-examples _6.0.18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-user_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-user_6.0 .18-0ubuntu6.1_all.deb


• Ubuntu tomcat6_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6_6.0.18-0 ubuntu6.1_all.deb

Ubuntu Ubuntu Linux 8.10 sparc

• Ubuntu libservlet2.5-java_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libservlet2.5-ja va_6.0.18-0ubuntu3.2_all.deb


• Ubuntu libtomcat6-java_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libtomcat6-java_ 6.0.18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-admin_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-admin_6. 0.18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-common_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-common_6 .0.18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-docs_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-docs_6.0 .18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-examples_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-examples _6.0.18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-user_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-user_6.0 .18-0ubuntu3.2_all.deb


• Ubuntu tomcat6_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6_6.0.18-0 ubuntu3.2_all.deb

MandrakeSoft Linux Mandrake 2009.0 x86_64

• Mandriva tomcat5-5.5.27-0.3.0.1mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-admin-webapps-5.5.27-0.3.0.1mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-common-lib-5.5.27-0.3.0.1mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-5.5.27-0.3.0.1mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-eclipse-5.5.27-0.3.0.1mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-javadoc-5.5.27-0.3.0.1mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jsp-2.0-api-5.5.27-0.3.0.1mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jsp-2.0-api-javadoc-5.5.27-0.3.0.1mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-server-lib-5.5.27-0.3.0.1mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-servlet-2.4-api-5.5.27-0.3.0.1mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-servlet-2.4-api-javadoc-5.5.27-0.3.0.1mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-webapps-5.5.27-0.3.0.1mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/

Ubuntu Ubuntu Linux 9.04 amd64

• Ubuntu libservlet2.5-java-doc_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libservlet2.5-ja va-doc_6.0.18-0ubuntu6.1_all.deb


• Ubuntu libservlet2.5-java_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libservlet2.5-ja va_6.0.18-0ubuntu6.1_all.deb


• Ubuntu libtomcat6-java_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libtomcat6-java_ 6.0.18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-admin_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-admin_6. 0.18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-common_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-common_6 .0.18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-docs_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-docs_6.0 .18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-examples_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-examples _6.0.18-0ubuntu6.1_all.deb


• Ubuntu tomcat6-user_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-user_6.0 .18-0ubuntu6.1_all.deb


• Ubuntu tomcat6_6.0.18-0ubuntu6.1_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6_6.0.18-0 ubuntu6.1_all.deb

MandrakeSoft Linux Mandrake 2009.1 x86_64

• Mandriva tomcat5-5.5.27-0.3.0.1mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-admin-webapps-5.5.27-0.3.0.1mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-common-lib-5.5.27-0.3.0.1mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-5.5.27-0.3.0.1mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-eclipse-5.5.27-0.3.0.1mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-javadoc-5.5.27-0.3.0.1mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jsp-2.0-api-5.5.27-0.3.0.1mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jsp-2.0-api-javadoc-5.5.27-0.3.0.1mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-server-lib-5.5.27-0.3.0.1mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-servlet-2.4-api-5.5.27-0.3.0.1mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-servlet-2.4-api-javadoc-5.5.27-0.3.0.1mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-webapps-5.5.27-0.3.0.1mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/

Ubuntu Ubuntu Linux 8.10 i386

• Ubuntu libservlet2.5-java_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libservlet2.5-ja va_6.0.18-0ubuntu3.2_all.deb


• Ubuntu libtomcat6-java_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/libtomcat6-java_ 6.0.18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-admin_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-admin_6. 0.18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-common_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-common_6 .0.18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-docs_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-docs_6.0 .18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-examples_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-examples _6.0.18-0ubuntu3.2_all.deb


• Ubuntu tomcat6-user_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6-user_6.0 .18-0ubuntu3.2_all.deb


• Ubuntu tomcat6_6.0.18-0ubuntu3.2_all.deb
  http://security.ubuntu.com/ubuntu/pool/main/t/tomcat6/tomcat6_6.0.18-0 ubuntu3.2_all.deb

MandrakeSoft Enterprise Server 5

• Mandriva tomcat5-5.5.27-0.3.0.2mdvmes5.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-admin-webapps-5.5.27-0.3.0.2mdvmes5.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-common-lib-5.5.27-0.3.0.2mdvmes5.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-5.5.27-0.3.0.2mdvmes5.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-eclipse-5.5.27-0.3.0.2mdvmes5.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-javadoc-5.5.27-0.3.0.2mdvmes5.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jsp-2.0-api-5.5.27-0.3.0.2mdvmes5.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jsp-2.0-api-javadoc-5.5.27-0.3.0.2mdvmes5.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-server-lib-5.5.27-0.3.0.2mdvmes5.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-servlet-2.4-api-5.5.27-0.3.0.2mdvmes5.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-servlet-2.4-api-javadoc-5.5.27-0.3.0.2mdvmes5.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-webapps-5.5.27-0.3.0.2mdvmes5.noarch.rpm
  http://www.mandriva.com/en/download/

Apache Software Foundation Tomcat 4.1

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 4.1.12

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 4.1.28

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 4.1.3 beta

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 4.1.30

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 4.1.31

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 4.1.32

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 4.1.37

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 5.5.1

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 5.5.10

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 5.5.11

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 5.5.11

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 5.5.12

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 5.5.16

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 5.5.19

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 5.5.2

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 5.5.2

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 5.5.21

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 5.5.22

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 5.5.23

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 5.5.26

• Apache Software Foundation Revision 7813628
  http://svn.apache.org/viewvc?rev=781362&view=rev

Apache Software Foundation Tomcat 6.0

• Apache Software Foundation revision 742915
  http://svn.apache.org/viewvc?rev=742915&view=rev

Apache Software Foundation Tomcat 6.0.15

• Apache Software Foundation revision 742915
  http://svn.apache.org/viewvc?rev=742915&view=rev

Apache Software Foundation Tomcat 6.0.16

• Apache Software Foundation revision 742915
  http://svn.apache.org/viewvc?rev=742915&view=rev

Apache Software Foundation Tomcat 6.0.5

• Apache Software Foundation revision 742915
  http://svn.apache.org/viewvc?rev=742915&view=rev

Apache Software Foundation Tomcat 6.0.7

• Apache Software Foundation revision 742915
  http://svn.apache.org/viewvc?rev=742915&view=rev

Apache Software Foundation Tomcat 6.0.8

• Apache Software Foundation revision 742915
  http://svn.apache.org/viewvc?rev=742915&view=rev