

Rewterz Threat Advisory – PHOENIX CONTACT Automation Worx Software Suite Multiple Vulnerabilities
June 21, 2019
Rewterz Threat Alert – Ryuk Ransomware Adds Additional Features of IP Address and Computer Name Blacklisting
June 21, 2019
Rewterz Threat Advisory – PHOENIX CONTACT Automation Worx Software Suite Multiple Vulnerabilities
June 21, 2019
Rewterz Threat Alert – Ryuk Ransomware Adds Additional Features of IP Address and Computer Name Blacklisting
June 21, 2019Severity
Medium
Analysis Summary
An error related to the connection window when handling WINDOW_UPDATE messages can be exploited to exhaust available server-side threads and subsequently cause a DoS condition.
Impact
Denial of Service
Affected Vendors
Apache Foundation
Affected Products
- Apache Tomcat versions prior to 8.5.41.
- Apache Tomcat versions prior to 9.0.20
Remediation
Update to version 9.0.20 or 8.5.41.