CVE-2012-2733: Input Validation
First published: Fri Nov 16 2012(Updated: )
java/org/apache/coyote/http11/InternalNioInputBuffer.java in the HTTP NIO connector in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.28 does not properly restrict the request-header size, which allows remote attackers to cause a denial of service (memory consumption) via a large amount of header data.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tomcat | =6.0 | |
| Tomcat | =6.0.0 | |
| Tomcat | =6.0.0-alpha | |
| Tomcat | =6.0.1 | |
| Tomcat | =6.0.1-alpha | |
| Tomcat | =6.0.2 | |
| Tomcat | =6.0.2-alpha | |
| Tomcat | =6.0.2-beta | |
| Tomcat | =6.0.3 | |
| Tomcat | =6.0.4 | |
| Tomcat | =6.0.4-alpha | |
| Tomcat | =6.0.5 | |
| Tomcat | =6.0.6 | |
| Tomcat | =6.0.6-alpha | |
| Tomcat | =6.0.7 | |
| Tomcat | =6.0.7-alpha | |
| Tomcat | =6.0.7-beta | |
| Tomcat | =6.0.8 | |
| Tomcat | =6.0.8-alpha | |
| Tomcat | =6.0.9 | |
| Tomcat | =6.0.9-beta | |
| Tomcat | =6.0.10 | |
| Tomcat | =6.0.11 | |
| Tomcat | =6.0.12 | |
| Tomcat | =6.0.13 | |
| Tomcat | =6.0.14 | |
| Tomcat | =6.0.15 | |
| Tomcat | =6.0.16 | |
| Tomcat | =6.0.17 | |
| Tomcat | =6.0.18 | |
| Tomcat | =6.0.19 | |
| Tomcat | =6.0.20 | |
| Tomcat | =6.0.24 | |
| Tomcat | =6.0.26 | |
| Tomcat | =6.0.27 | |
| Tomcat | =6.0.28 | |
| Tomcat | =6.0.29 | |
| Tomcat | =6.0.30 | |
| Tomcat | =6.0.31 | |
| Tomcat | =6.0.32 | |
| Tomcat | =6.0.33 | |
| Tomcat | =6.0.35 | |
| Tomcat | =7.0.0 | |
| Tomcat | =7.0.0-beta | |
| Tomcat | =7.0.1 | |
| Tomcat | =7.0.2 | |
| Tomcat | =7.0.2-beta | |
| Tomcat | =7.0.3 | |
| Tomcat | =7.0.4 | |
| Tomcat | =7.0.4-beta | |
| Tomcat | =7.0.5 | |
| Tomcat | =7.0.6 | |
| Tomcat | =7.0.7 | |
| Tomcat | =7.0.8 | |
| Tomcat | =7.0.9 | |
| Tomcat | =7.0.10 | |
| Tomcat | =7.0.11 | |
| Tomcat | =7.0.12 | |
| Tomcat | =7.0.13 | |
| Tomcat | =7.0.14 | |
| Tomcat | =7.0.15 | |
| Tomcat | =7.0.16 | |
| Tomcat | =7.0.17 | |
| Tomcat | =7.0.18 | |
| Tomcat | =7.0.19 | |
| Tomcat | =7.0.20 | |
| Tomcat | =7.0.21 | |
| Tomcat | =7.0.22 | |
| Tomcat | =7.0.23 | |
| Tomcat | =7.0.25 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.opensuse.org/opensuse-updates/2012-12/msg00089.html
- http://lists.opensuse.org/opensuse-updates/2012-12/msg00090.html
- http://lists.opensuse.org/opensuse-updates/2013-01/msg00037.html
- http://marc.info/?l=bugtraq&m=136612293908376&w=2
- http://marc.info/?l=bugtraq&m=139344343412337&w=2
- http://secunia.com/advisories/51371
- http://secunia.com/advisories/57126
- http://svn.apache.org/viewvc?view=revision&revision=1350301
- http://svn.apache.org/viewvc?view=revision&revision=1356208
- http://tomcat.apache.org/security-6.html
- http://tomcat.apache.org/security-7.html
- http://www.securityfocus.com/bid/56402
- http://www.securitytracker.com/id?1027729
- http://www.ubuntu.com/usn/USN-1637-1
- https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03748878
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19218
Frequently Asked Questions
What is the severity of CVE-2012-2733?
CVE-2012-2733 is classified as a denial of service vulnerability due to insufficient request-header size restrictions.
How do I fix CVE-2012-2733?
To fix CVE-2012-2733, update Apache Tomcat to version 6.0.36 or later, or 7.0.28 or later.
Which versions of Apache Tomcat are affected by CVE-2012-2733?
CVE-2012-2733 affects Apache Tomcat versions 6.0.0 through 6.0.35 and 7.0.0 through 7.0.27.
What kind of attacks can exploit CVE-2012-2733?
Attackers can exploit CVE-2012-2733 to affect server performance by causing high memory consumption.
Is there a workaround for CVE-2012-2733?
A temporary workaround for CVE-2012-2733 includes limiting the header size via configuration, but the best resolution is to update to a patched version.
- agent/references
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/tags
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/apache
- canonical/tomcat
- version/tomcat/6.0
- version/tomcat/6.0.0
- version/tomcat/6.0.0-alpha
- version/tomcat/6.0.1
- version/tomcat/6.0.1-alpha
- version/tomcat/6.0.2
- version/tomcat/6.0.2-alpha
- version/tomcat/6.0.2-beta
- version/tomcat/6.0.3
- version/tomcat/6.0.4
- version/tomcat/6.0.4-alpha
- version/tomcat/6.0.5
- version/tomcat/6.0.6
- version/tomcat/6.0.6-alpha
- version/tomcat/6.0.7
- version/tomcat/6.0.7-alpha
- version/tomcat/6.0.7-beta
- version/tomcat/6.0.8
- version/tomcat/6.0.8-alpha
- version/tomcat/6.0.9
- version/tomcat/6.0.9-beta
- version/tomcat/6.0.10
- version/tomcat/6.0.11
- version/tomcat/6.0.12
- version/tomcat/6.0.13
- version/tomcat/6.0.14
- version/tomcat/6.0.15
- version/tomcat/6.0.16
- version/tomcat/6.0.17
- version/tomcat/6.0.18
- version/tomcat/6.0.19
- version/tomcat/6.0.20
- version/tomcat/6.0.24
- version/tomcat/6.0.26
- version/tomcat/6.0.27
- version/tomcat/6.0.28
- version/tomcat/6.0.29
- version/tomcat/6.0.30
- version/tomcat/6.0.31
- version/tomcat/6.0.32
- version/tomcat/6.0.33
- version/tomcat/6.0.35
- version/tomcat/7.0.0
- version/tomcat/7.0.0-beta
- version/tomcat/7.0.1
- version/tomcat/7.0.2
- version/tomcat/7.0.2-beta
- version/tomcat/7.0.3
- version/tomcat/7.0.4
- version/tomcat/7.0.4-beta
- version/tomcat/7.0.5
- version/tomcat/7.0.6
- version/tomcat/7.0.7
- version/tomcat/7.0.8
- version/tomcat/7.0.9
- version/tomcat/7.0.10
- version/tomcat/7.0.11
- version/tomcat/7.0.12
- version/tomcat/7.0.13
- version/tomcat/7.0.14
- version/tomcat/7.0.15
- version/tomcat/7.0.16
- version/tomcat/7.0.17
- version/tomcat/7.0.18
- version/tomcat/7.0.19
- version/tomcat/7.0.20
- version/tomcat/7.0.21
- version/tomcat/7.0.22
- version/tomcat/7.0.23
- version/tomcat/7.0.25