CVE-2006-7197

Apache Tomcat 5.5.15 - Memory Corruption

Title source: llm
STIX 2.1

Description

The AJP connector in Apache Tomcat 5.5.15 uses an incorrect length for chunks, which can cause a buffer over-read in the ajp_process_callback in mod_jk, which allows remote attackers to read portions of sensitive memory.

Scores

EPSS 0.0832
EPSS Percentile 94.3%

Details

Status published
Products (2)
apache/tomcat 5.5.15
org.apache.tomcat/tomcat 0Maven
Published Apr 25, 2007
Tracked Since Feb 18, 2026