NVD

Id
82602  
Name
CVE-2017-6056  
Description
It was discovered that a programming error in the processing of HTTPS requests in the Apache Tomcat servlet and JSP engine may result in denial of service via an infinite loop. The denial of service is easily achievable as a consequence of backporting a CVE-2016-6816 fix but not backporting the fix for Tomcat bug 57544. Distributions affected by this backporting issue include Debian (before 7.0.56-3+deb8u8 and 8.0.14-1+deb8u7 in jessie) and Ubuntu.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:N/A:P)  
Pub Date
2017-05-27  
Published
2017-02-17  
Modified Date
2017-05-22  
Seq
2017-6056  

Actions

Related NVD References

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
65880 JVNDB-2017-002219 Apache Tomcat サーブレットおよび JSP エンジンの HTTPS リクエストの処理におけるサービス運用妨害 (DoS) の脆弱性 Apache Tomcat サーブレットおよび JSP エンジンの HTTPS リクエストの処理には、サービス運用妨害 (無限ループ) 状態にされる脆弱性が存在します。 CVE-2017-6056 CVE-2017-6056 82602 5 7.5 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-002219.html 2017-01-12 2017-04-04 View