2 matches found
Buffer Overflow
Apache Tomcat JK ISAPI Connector is vulnerable to buffer overflow attacks. A remote user can send a specifically crafted URI to the target virtual host to trigger a buffer overflow in the JK ISAPI connector and potentially execute arbitrary code on the target system which may leads the applicatio...
CVE-2018-1323
The issue (CVE-2018-1323) affects Apache Tomcat JK Connector (mod_jk) IIS/ISAPI integration: the ISAPI Connector 1.2.0–1.2.42 path normalization in jk_isapi_plugin.c could allow a specially crafted request to access application functionality via the reverse proxy that was not intended for clients...