CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2016-5396
https://notcve.org/view.php?id=CVE-2016-5396
Apache Traffic Server 6.0.0 to 6.2.0 are affected by an HPACK Bomb Attack. Apache Traffic Server 6.0.0 a 6.2.0 están afectados por un HPACK Bomb Attack. • http://www.securityfocus.com/bid/97945 http://www.securitytracker.com/id/1038275 https://issues.apache.org/jira/browse/TS-5019 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-5659
https://notcve.org/view.php?id=CVE-2017-5659
Apache Traffic Server before 6.2.1 generates a coredump when there is a mismatch between content length and chunked encoding. Apache Traffic Server en versiones anteriores a 6.2.1 genera un volcado de memoria cuando hay una falta de coincidencia entre la longitud del contenido y la codificación en fragmentos. • http://www.securityfocus.com/bid/97949 http://www.securitytracker.com/id/1038275 https://issues.apache.org/jira/browse/TS-4819 • CWE-20: Improper Input Validation •