CVE ID:	CVE-2012-3544
Description:	Apache Tomcat 6.x before 6.0.37 and 7.x before 7.0.30 does not properly handle chunk extensions in chunked transfer coding, which allows remote attackers to cause a denial of service by streaming data.
Test IDs:	1.3.6.1.4.1.25623.1.0.803637   1.3.6.1.4.1.25623.1.0.871159   1.3.6.1.4.1.25623.1.1.4.2014.1015.1   1.3.6.1.4.1.25623.1.0.881927   1.3.6.1.4.1.25623.1.1.4.2015.1337.1   1.3.6.1.4.1.25623.1.0.120469   1.3.6.1.4.1.25623.1.0.871181   1.3.6.1.4.1.25623.1.0.702725   1.3.6.1.4.1.25623.1.1.4.2013.1374.1
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2012-3544 BugTraq ID: 59797 http://www.securityfocus.com/bid/59797 BugTraq ID: 64758 http://www.securityfocus.com/bid/64758 Bugtraq: 20130510 [SECURITY] CVE-2012-3544 Chunked transfer encoding extension size is not limited (Google Search) http://archives.neohapsis.com/archives/bugtraq/2013-05/0042.html Bugtraq: 20141205 NEW: VMSA-2014-0012 - VMware vSphere product updates address security vulnerabilities (Google Search) http://www.securityfocus.com/archive/1/534161/100/0/threaded http://seclists.org/fulldisclosure/2014/Dec/23 https://lists.apache.org/thread.html/b8a1bf18155b552dcf9a928ba808cbadad84c236d85eab3033662cfb@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/39ae1f0bd5867c15755a6f959b271ade1aea04ccdc3b2e639dcd903b@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/37220405a377c0182d2afdbc36461c4783b2930fbeae3a17f1333113@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/b84ad1258a89de5c9c853c7f2d3ad77e5b8b2930be9e132d5cef6b95@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/r03c597a64de790ba42c167efacfa23300c3d6c9fe589ab87fe02859c@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/r587e50b86c1a96ee301f751d50294072d142fd6dc08a8987ae9f3a9b@%3Cdev.tomcat.apache.org%3E http://www.ubuntu.com/usn/USN-1841-1