IBM Security Bulletin: Apache Commons FileUpload is vulnerable to a denial of service (CVEID: CVE-2014-0050) in IBM Content Manager Services for Lotus Quickr
IBM PSIRT 270004PFE3 firstname.lastname@example.org | | Tags:  psirtindustry psirtmedium
0 Comments | 765 Visits
Apache Commons FileUpload and Tomcat are vulnerable to a denial of service, caused by the improper handling of Content-Type HTTP header for multipart requests. By sending a specially-crafted request, an attacker could exploit this vulnerability to cause the application to enter into an infinite loop.
IBM Content Manager Services for Lotus Quickr 1.0 and 1.1