Exploitation Summary
EIP tracks 5 public exploits for CVE-2014-0050.
PoCs published by Trustwave's SpiderLabs, jrrdev, dawetmaster, including Metasploit module auxiliary/dos/http/apache_commons_fileupload_dos.
AI-analyzed exploit summary This exploit targets CVE-2014-0050, a DoS vulnerability in Apache Commons FileUpload and Apache Tomcat. It sends malformed multipart/form-data requests with oversized headers to trigger resource exhaustion.
Description
MultipartStream.java in Apache Commons FileUpload before 1.3.1, as used in Apache Tomcat, JBoss Web, and other products, allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted Content-Type header that bypasses a loop's intended exit conditions.
Exploits (5)
exploitdb
WORKING POC
VERIFIED
by Trustwave's SpiderLabs · rubydosmultiple
https://www.exploit-db.com/exploits/31615
This exploit targets CVE-2014-0050, a DoS vulnerability in Apache Commons FileUpload and Apache Tomcat. It sends malformed multipart/form-data requests with oversized headers to trigger resource exhaustion.
Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:
Apache Commons FileUpload, Apache Tomcat
No auth needed
Prerequisites:
Network access to the target server
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
nomisec
WORKING POC
1 stars
by jrrdev · poc
https://github.com/jrrdev/cve-2014-0050
This repository contains a proof-of-concept exploit for CVE-2014-0050, a denial-of-service (DoS) vulnerability in Apache Commons FileUpload and Apache Tomcat. The exploit leverages a malformed multipart boundary to trigger excessive CPU usage on the target server.
Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:
Apache Commons FileUpload, Apache Tomcat
No auth needed
Prerequisites:
Network access to the target server · Apache Commons FileUpload or Apache Tomcat vulnerable to CVE-2014-0050
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
nomisec
WRITEUP
by dawetmaster · poc
https://github.com/dawetmaster/CVE-2014-0050-commons-fileupload-vulnerable
This repository contains the vulnerable source code of Apache Commons FileUpload (version affected by CVE-2014-0050), which is a denial-of-service (DoS) vulnerability caused by inefficient handling of multipart form data. The code includes deprecated classes like `DefaultFileItem` and `DefaultFileItemFactory`, which are part of the vulnerable implementation.
Classification
Writeup 90%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target:
Apache Commons FileUpload (versions before 1.3.1)
No auth needed
Prerequisites:
Target application using vulnerable Apache Commons FileUpload library · Ability to send crafted multipart form data
MITRE ATT&CK
devstral-2 · analyzed Mar 14, 2026
Full analysis →
nomisec
WRITEUP
by andikahilmy · poc
https://github.com/andikahilmy/CVE-2014-0050-commons-fileupload-vulnerable
This repository contains the vulnerable source code of Apache Commons FileUpload (version affected by CVE-2014-0050), specifically the deprecated `DefaultFileItem` and `DefaultFileItemFactory` classes. It serves as a reference for analyzing the vulnerability but does not include an exploit or PoC.
Classification
Writeup 90%
Attack Type
Dos
Complexity
Moderate
Reliability
Theoretical
Target:
Apache Commons FileUpload < 1.3.1
No auth needed
Prerequisites:
Application using vulnerable Apache Commons FileUpload library
MITRE ATT&CK
devstral-2 · analyzed Feb 18, 2026
Full analysis →
metasploit
WORKING POC
by Unknown, ribeirux · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/http/apache_commons_fileupload_dos.rb
This Metasploit module exploits a DoS vulnerability in Apache Commons FileUpload (1.0-1.3) and Apache Tomcat (7.0.0-7.0.50, 8.0.0-RC1-8.0.1) by sending a crafted Content-Type header with an excessively long boundary, triggering an infinite loop.
Classification
Working Poc 100%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target:
Apache Commons FileUpload 1.0-1.3, Apache Tomcat 7.0.0-7.0.50, 8.0.0-RC1-8.0.1
No auth needed
Prerequisites:
Network access to the target server
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (69)
Core 69
Core References
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676656
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21677691
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676853
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21681214
Various Sources x_refsource_confirm
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS14-017/index.html
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676410
Various Sources x_refsource_confirm
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-350733.htm
Various Sources x_refsource_confirm
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS14-015/index.html
Various Sources x_refsource_confirm
http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS14-016/index.html
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21677724
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=1062337
Vendor Advisory x_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917
Exploit, Third Party Advisory x_refsource_misc
http://packetstormsecurity.com/files/127215/VMware-Security-Advisory-2014-0007.html
Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2014-0008.html
Third Party Advisory third-party-advisory
x_refsource_jvn
http://jvn.jp/en/jp/JVN14876762/index.html
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=143136844732487&w=2
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60753
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59184
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2014/dsa-2856
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59039
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59185
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676401
Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2014-0012.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58075
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59187
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59041
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676092
Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2014-0007.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/60475
Patch x_refsource_confirm
http://svn.apache.org/r1565143
Vendor Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
Third Party Advisory x_refsource_confirm
http://advisories.mageia.org/MGASA-2014-0110.html
Vendor Advisory x_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05324755
Exploit x_refsource_misc
http://blog.spiderlabs.com/2014/02/cve-2014-0050-exploit-with-boundaries-loops-without-boundaries.html
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2015:084
Vendor Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676405
Patch, Vendor Advisory x_refsource_confirm
http://tomcat.apache.org/security-7.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59492
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/534161/100/0/threaded
Vendor Advisory x_refsource_confirm
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
Vendor Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59500
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59183
Patch, Vendor Advisory x_refsource_confirm
http://tomcat.apache.org/security-8.html
Vendor Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676403
Vendor Advisory x_refsource_confirm
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0252.html
Third Party Advisory third-party-advisory
x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2014-000017
Vendor Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html
Vendor Advisory x_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2130-1
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/65400
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0400.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59725
Mailing List mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2014/Dec/23
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21675432
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/57915
Vendor Advisory x_refsource_confirm
http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59399
Various Sources mailing-list
x_refsource_mlist
http://mail-archives.apache.org/mod_mbox/commons-dev/201402.mbox/%3C52F373FC.9030907%40apache.org%3E
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21676091
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/58976
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2014-0253.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/59232
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/532549/100/0/threaded
Various Sources x_refsource_confirm
http://www-01.ibm.com/support/docview.wss?uid=swg21669554
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/202107-39
Scores
EPSS
0.9265
EPSS Percentile
99.8%
Details
CWE
CWE-264
Status
published
Products (47)
apache/commons_fileupload
1.0
apache/commons_fileupload
1.1
apache/commons_fileupload
1.1.1
apache/commons_fileupload
1.2
apache/commons_fileupload
1.2.1
apache/commons_fileupload
1.2.2
apache/commons_fileupload
< 1.3
apache/tomcat
7.0.0 (2 CPE variants)
apache/tomcat
7.0.1
apache/tomcat
7.0.2 (2 CPE variants)
... and 37 more
Published
Apr 01, 2014
Tracked Since
Feb 18, 2026