ID de Prueba:	1.3.6.1.4.1.25623.1.0.146722
Categoría:	Web Servers
Título:	Apache Tomcat DoS Vulnerability (Sep 2021) - Windows
Resumen:	Apache Tomcat is prone to a denial of service (DoS) vulnerability.
Descripción:	Summary: Apache Tomcat is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: When Tomcat was configured to use NIO+OpenSSL or NIO2+OpenSSL for TLS, a specially crafted packet could be used to trigger an infinite loop resulting in a denial of service. Affected Software/OS: Apache Tomcat 8.5.0 through 8.5.63, 9.0.0-M1 through 9.0.43 and 10.0.0-M1 through 10.0.2. Solution: Update to version 8.5.64, 9.0.44, 10.0.4 or later. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2021-41079 Debian Security Information: DSA-4986 (Google Search) https://www.debian.org/security/2021/dsa-4986 https://lists.apache.org/thread.html/rccdef0349fdf4fb73a4e4403095446d7fe6264e0a58e2df5c6799434%40%3Cannounce.tomcat.apache.org%3E https://lists.debian.org/debian-lts-announce/2021/09/msg00012.html https://lists.apache.org/thread.html/rb4de81ac647043541a32881099aa6eb5a23f1b7fd116f713f8ab9dbe@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/r6b6b674e3f168dd010e67dbe6848b866e2acf26371452fdae313b98a@%3Cusers.tomcat.apache.org%3E
Copyright	Copyright (C) 2021 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.