Red Hat Bugzilla – Bug 430642
CVE-2006-7197 mod_jk chunk too long
Last modified: 2018-08-15 17:09:59 EDT
Common Vulnerabilities and Exposures assigned an identifier CVE-2006-7197 to the following vulnerability:
The AJP connector in Apache Tomcat 5.5.15 uses an incorrect length for chunks, which can cause a buffer over-read in the ajp_process_callback in mod_jk, which allows remote attackers to read portions of sensitive memory.