According to its self-reported version number, the instance of Apache Tomcat listening on the remote host is prior to 6.0.32. It is, therefore, affected by a denial of service vulnerability. An error, involving the NIO HTTP connector, exists such that the limit โmaxHttpHeaderSizeโ is not enforced thereby allowing a denial of service condition when memory is exhausted.
Note that Nessus Network Monitor has not tested for this issue but has instead relied only on the applicationโs self-reported version number.
Binary data 5790.pasl