Debian Security Bug TrackerDEBIANCVE:CVE-2012-0022

HistoryJan 19, 2012 - 4:01 a.m.

CVE-2012-0022

2012-01-1904:01:00

Debian Security Bug Tracker

security-tracker.debian.org

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

JSON

Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consumption) via a request that contains many parameters and parameter values, a different vulnerability than CVE-2011-4858.

OSVersionArchitecturePackageVersionFilename
Debian9alltomcat7< 7.0.75-1tomcat7_7.0.75-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	9	all	tomcat7	< 7.0.75-1	tomcat7_7.0.75-1_all.deb

nessus 31

openvas 28

prion 2

centos 2

ubuntucve 2

osv 3

redhat 11

github 2

cve 3

oraclelinux 2

ubuntu 1

checkpoint_advisories 1

debiancve 1

tomcat 3

seebug 2

freebsd 1

securityvulns 6

ibm 7

debian 1

exploitpack 1

exploitdb 1

vmware 2

gentoo 1

oracle 1

nessus

Apache Tomcat 7.x < 7.0.23 Hash Collision DoS

2012-01-13 00:00:00

Mandriva Linux Security Advisory : tomcat5 (MDVSA-2012:085)

2012-05-31 00:00:00

CentOS 5 : tomcat5 (CESA-2012:0474)

2012-04-12 00:00:00

openvas

RedHat Update for tomcat5 RHSA-2012:0474-01

2012-04-13 00:00:00

RedHat Update for tomcat6 RHSA-2012:0475-01

2012-07-09 00:00:00

FreeBSD Ports: tomcat

2012-02-12 00:00:00

prion

Design/Logic Flaw

2012-01-19 04:01:00

Code injection

2012-01-05 19:55:00

centos

tomcat5 security update

2012-04-11 19:16:37

tomcat6 security update

2012-04-11 20:13:41

ubuntucve

CVE-2012-0022

2012-01-18 00:00:00

CVE-2011-4858

2012-01-05 00:00:00

osv

Denial of Service in Apache Tomcat

2022-05-04 00:27:43

Improper Input Validation in Apache Tomcat

2022-05-14 03:52:45

tomcat6 - several

2012-02-02 00:00:00

redhat

(RHSA-2012:0475) Moderate: tomcat6 security update

2012-04-11 00:00:00

(RHSA-2012:0474) Moderate: tomcat5 security update

2012-04-11 00:00:00

(RHSA-2012:1331) Moderate: JBoss Operations Network 3.1.1 update

2012-10-03 15:08:03

github

Denial of Service in Apache Tomcat

2022-05-04 00:27:43

Improper Input Validation in Apache Tomcat

2022-05-14 03:52:45

cve

CVE-2012-0022

2012-01-19 04:01:00

CVE-2011-4858

2012-01-05 19:55:00

CVE-2011-4084

2011-12-30 01:55:00

oraclelinux

tomcat6 security update

2012-04-11 00:00:00

tomcat5 security update

2012-04-11 00:00:00

ubuntu

Tomcat vulnerabilities

2012-02-13 00:00:00

checkpoint_advisories

Apache Tomcat Parameter Hash Collision Denial of Service - Ver2 (CVE-2011-4858)

2014-04-16 00:00:00

debiancve

CVE-2011-4858

2012-01-05 19:55:00

tomcat

Fixed in Apache Tomcat 7.0.23

2011-11-25 00:00:00

Fixed in Apache Tomcat 5.5.35

2012-01-16 00:00:00

Fixed in Apache Tomcat 6.0.35

2011-12-05 00:00:00

seebug

Apache Tomcat Large Number Denial Of Service

2012-01-18 00:00:00

PHP Hash Table Collision Proof Of Concept

2014-07-01 00:00:00

freebsd

tomcat -- Denial of Service

2011-10-21 00:00:00

securityvulns

Apache Tomcat security vulnerabilities

2012-01-20 00:00:00

[security bulletin] HPSBMU02894 rev.1 - HP Network Node Manager I (NNMi) for HP-UX, Linux, Solaris, and Windows, Remote Denial of Service (DoS), Unauthorized Access, Execution of Arbitrary Code

2013-07-29 00:00:00

VMSA-20120005 VMware vCenter Server, Orchestrator, Update Manager, vShield, vSphere Client, ESXi and ESX address several security issues

2012-03-20 00:00:00

ibm

Security Bulletin: Tivoli Workload Dynamic Console Vulnerability exposure in Tivoli Integrated Portal component

2022-09-26 03:29:56

Security Bulletin: Tivoli Key Lifecycle Manager can be affected by multiple vulnerabilities in Tivoli Integrated Portal (CVE-2013-0464, CVE-2012-3325, CVE-2011-4858)

2022-09-25 21:06:56

Security Bulletin: Tivoli Storage Productivity Center, multiple security vulnerabilities in IBM Tivoli Integrated Portal (CVE-2013-0464, CVE-2012-3325, CVE-2011-4858)

2022-09-26 22:21:32

debian

[SECURITY] [DSA 2401-1] tomcat6 security update

2012-02-02 19:29:50

exploitpack

PHP Hash Table Collision - Denial of Service (PoC)

2012-01-03 00:00:00

exploitdb

PHP Hash Table Collision - Denial of Service (PoC)

2012-01-03 00:00:00

vmware

VMware vCenter Server, Orchestrator, Update Manager, vShield, vSphere Client, Workstation, Player, ESXi and ESX address several security issues

2012-03-15 00:00:00

VMware vCenter Server, Orchestrator, Update Manager, vShield, vSphere Client, ESXi and ESX address several security issues

2012-03-15 00:00:00

gentoo

Apache Tomcat: Multiple vulnerabilities

2012-06-24 00:00:00

oracle

Oracle Critical Patch Update - January 2013

2013-01-15 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

JSON

Related for DEBIANCVE:CVE-2012-0022