CVE-2014-0050

Apache Commons FileUpload <1.3.1 - DoS

Title source: llm

Description

MultipartStream.java in Apache Commons FileUpload before 1.3.1, as used in Apache Tomcat, JBoss Web, and other products, allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted Content-Type header that bypasses a loop's intended exit conditions.

Exploits (4)

nomisec WORKING POC 1 stars

by jrrdev · poc

https://github.com/jrrdev/cve-2014-0050

View Code ZIP pw:eip

nomisec WRITEUP

by andikahilmy · poc

https://github.com/andikahilmy/CVE-2014-0050-commons-fileupload-vulnerable

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Trustwave's SpiderLabs · rubydosmultiple

https://www.exploit-db.com/exploits/31615

View Code ZIP pw:eip

metasploit WORKING POC

by Unknown, ribeirux · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/http/apache_commons_fileupload_dos.rb

View Code ZIP pw:eip

References (69)

[Various Sources] http://www-01.ibm.com/support/docview.wss?uid=swg21676410

[Various Sources] http://www-01.ibm.com/support/docview.wss?uid=swg21676656

[Various Sources] http://www-01.ibm.com/support/docview.wss?uid=swg21676853

[Various Sources] http://www-01.ibm.com/support/docview.wss?uid=swg21677691

[Various Sources] http://www-01.ibm.com/support/docview.wss?uid=swg21677724

[Various Sources] http://www-01.ibm.com/support/docview.wss?uid=swg21681214

[Various Sources] http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS14-015/index.html

[Various Sources] http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS14-016/index.html

[Various Sources] http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS14-017/index.html

[Various Sources] http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-350733.htm

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDVSA-2015:084

[Third Party Advisory] http://advisories.mageia.org/MGASA-2014-0110.html

[Exploit] http://blog.spiderlabs.com/2014/02/cve-2014-0050-exploit-with-boundaries-loops-without-boundaries.html

[Third Party Advisory] http://jvn.jp/en/jp/JVN14876762/index.html

[Third Party Advisory] http://jvndb.jvn.jp/jvndb/JVNDB-2014-000017

[Various Sources] http://mail-archives.apache.org/mod_mbox/commons-dev/201402.mbox/%3C52F373FC.9030907%40apache.org%3E

[Mailing List] http://marc.info/?l=bugtraq&m=143136844732487&w=2

[Exploit, Third Party Advisory] http://packetstormsecurity.com/files/127215/VMware-Security-Advisory-2014-0007.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2014-0252.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2014-0253.html

... and 49 more

Scores

EPSS 0.9272

EPSS Percentile 99.7%

Classification

CWE

CWE-264

Status draft

Affected Products (50)

oracle/retail_applications

oracle/retail_applications

oracle/retail_applications

oracle/retail_applications

oracle/retail_applications

oracle/retail_applications

oracle/retail_applications

oracle/retail_applications

apache/commons_fileupload < 1.3

apache/commons_fileupload

apache/commons_fileupload

apache/commons_fileupload

apache/commons_fileupload

apache/commons_fileupload

apache/commons_fileupload

... and 35 more

Timeline

Published Apr 01, 2014

Tracked Since Feb 18, 2026