CVE-2012-4534

2012-12-19T11:55:00
ID CVE-2012-4534
Type cve
Reporter secalert@redhat.com
Modified 2017-09-19T01:35:00

Description

org/apache/tomcat/util/net/NioEndpoint.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.28, when the NIO connector is used in conjunction with sendfile and HTTPS, allows remote attackers to cause a denial of service (infinite loop) by terminating the connection during the reading of a response.