Security Advisory

CVE-2014-0050

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-03-28 19:00:00

Last updated 2024-08-06 09:05:38

Assigner redhat

State PUBLISHED

Description

MultipartStream.java in Apache Commons FileUpload before 1.3.1, as used in Apache Tomcat, JBoss Web, and other products, allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted Content-Type header that bypasses a loops intended exit conditions.

← Browse all CVEs View on cve.org ↗