JBoss Web(Tomcat) has Slowloris denial of service security vulnerability
Issue
- Security Scan software hints JBoss has CVE-2007-6750 and CVE-2009-5111 security vulnerabilities (A denial of service vulnerability is present in some HTTP servers).
- Red Hat Security Team had assigned a CVE ID to this flaw
Environment
- Red Hat JBoss Application Platform (EAP)
- 5.x
- 6.x
- 7.x
- Red Hat JBoss Enterprise Web Server (EWS)
- Apache Tomcat
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.