IBM Security Bulletin: Open Source Apache Tomcat vulnerability (CVE-2014-0227)

Apache Tomcat is vulnerable to HTTP request smuggling. A remote attacker could send a specially-crafted request in a malformed chunked header to the Web server to cause multiple processing conflicts on the servers. An attacker could exploit this vulnerability...

from IBM Product Security Incident Response Team http://ift.tt/1dQ7VKS