Apache Tomcat Non-HTTP Request Denial Of Service Vulnerability

Apache Tomcat 4 has been reported prone to a remotely triggered denial-of-service vulnerability when handling undisclosed non-HTTP request types.

When certain non-HTTP request types are handled by the Tomcat HTTP connector, the Tomcat server will reject subsequent requests on the affected port until the service is restarted.


Privacy Statement
Copyright 2010, SecurityFocus