I've also ran into this, Security team has uncovered this as an issue with Apache2 not tomcat.
I've ran through the steps listed above and this is still showing a vulnerability with Apache2
This is part of the report after running a new nessus scan after the work around listed in the above post.
55976 - Apache HTTP Server Byte Range DoS
Upgrade to Apache httpd 2.2.21 or later, or use one of the workarounds in Apache's advisories for CVE-2011-3192. Version 2.2.20 fixed the issue, but also introduced a regression.
If the host is running a web server based on Apache httpd, contact the vendor for a fix.