| Vulnerability Name: | CVE-2002-0935 (CCN-9396) | ||||||||
| Assigned: | 2002-06-20 | ||||||||
| Published: | 2002-06-20 | ||||||||
| Updated: | 2019-03-25 | ||||||||
| Summary: | Apache Tomcat 4.0.3, and possibly other versions before 4.1.3 beta, allows remote attackers to cause a denial of service (resource exhaustion) via a large number of requests to the server with null characters, which causes the working threads to hang. | ||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||
| References: | Source: CCN Type: BugTraq Mailing List, Thu Jun 20 2002 - 04:08:08 CDT KPMG-2002025: Apache Tomcat Denial of Service Source: VULNWATCH Type: UNKNOWN 20020620 [VulnWatch] KPMG-2002025: Apache Tomcat Denial of Service Source: MITRE Type: CNA CVE-2002-0935 Source: CCN Type: The Jakarta Project Web site Binary Downloads Source: BUGTRAQ Type: UNKNOWN 20020620 KPMG-2002025: Apache Tomcat Denial of Service Source: XF Type: Patch, Vendor Advisory tomcat-null-thread-dos(9396) Source: OSVDB Type: UNKNOWN 5051 Source: CCN Type: OSVDB ID: 5051 Apache Tomcat Null Character DoS Source: BID Type: Patch, Vendor Advisory 5067 Source: CCN Type: BID-5067 Apache Tomcat Null Character Malformed Request Denial Of Service Vulnerability Source: XF Type: UNKNOWN tomcat-null-thread-dos(9396) Source: MLIST Type: UNKNOWN [tomcat-dev] 20190319 svn commit: r1855831 [21/30] - in /tomcat/site/trunk: ./ docs/ xdocs/ Source: MLIST Type: UNKNOWN [tomcat-dev] 20190325 svn commit: r1856174 [19/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/ Source: MLIST Type: UNKNOWN [tomcat-dev] 20200213 svn commit: r1873980 [24/34] - /tomcat/site/trunk/docs/ | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||