Red Hat Bugzilla – Bug 430642
CVE-2006-7197 mod_jk chunk too long
Last modified: 2009-08-25 10:54:09 EDT
Common Vulnerabilities and Exposures assigned an identifier CVE-2006-7197 to the following vulnerability:
The AJP connector in Apache Tomcat 5.5.15 uses an incorrect length for chunks, which can cause a buffer over-read in the ajp_process_callback in mod_jk, which allows remote attackers to read portions of sensitive memory.