HTTP: Apache Commons FileUpload Boundary Denial of Service
This signature detects attempts to exploit a known vulnerability against Apache Commons FileUpload. A successful attack can result in a denial-of-service condition.
Extended Description
MultipartStream.java in Apache Commons FileUpload before 1.3.1, as used in Apache Tomcat, JBoss Web, and other products, allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted Content-Type header that bypasses a loop's intended exit conditions.
Affected Products
Apache tomcat
References
CVE: CVE-2023-24998
URL: http://tomcat.apache.org/security-7.html#fixed_in_apache_tomcat_7.0.70 http://securitytracker.com/id?1036900 http://markmail.org/message/kpfl7ax4el2owb3o http://tomcat.apache.org/security-7.html https://commons.apache.org/proper/commons-fileupload/security-reports.html
Short Name
HTTP:APACHE:FILEUPLOAD-DOS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Apache Boundary CVE-2014-0050 CVE-2016-3092 CVE-2023-24998 Commons Denial FileUpload Service of
Release Date
03/17/2023
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
Sigpack Version
3764
False Positive
Unknown
Vendors
Apache
Oracle