Denial of Service Vulnerability in Apache Commons Compress Sorting Algorithms

Denial of Service Vulnerability in Apache Commons Compress Sorting Algorithms

CVE-2012-2098 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Algorithmic complexity vulnerability in the sorting algorithms in bzip2 compressing stream (BZip2CompressorOutputStream) in Apache Commons Compress before 1.4.1 allows remote attackers to cause a denial of service (CPU consumption) via a file with many repeating inputs.

Learn more about our Cis Benchmark Audit For Apache Http Server.