CVE-2007-6750 CVE-2009-5111 A denial of service vulnerability is present in some HTTP servers

Version 2

    Verified Product Versions

    Wavelink Avalanche 6.1Wavelink Avalanche 6.0Wavelink Avalanche 5.3Wavelink Avalanche SE 5.3


    AvalancheMC, AvalancheSE, and Avalanche running Tomcat Server



    • Common Vulnerabilities & Exposures (CVE) CVE-2007-6750 CVE-2009-5111


    The issue affects Tomcat servers also, but no patch is available for Tomcat as the Tomcat security team does not consider this as a vulnerability.


    More information here:



    • Set appropriate timeout values in the connectionTimeout property for the relevant Connector(s) defined in server.xml,


    Further information here: