|| Hotline : 800 2378 ||  To contact CERT-MU send e-mail on --> info[at]cert-mu.gov.mu ||  To report incident e-mail on --> incident[at]cert-mu.gov.mu || To report Vulnerabilities send e-mail on --> Vulnerability[at]cert-mu.gov.mu ||
    Constituency
    Authority
    Vol. 2, Feb 2012
    Vol. 1, Oct 2011
    World CERTs
    Email Abuse
 
 
Authorized to use CERT(TM) - CERT is a mark owned by Carnegie Mellon University
 
 
 
 
 
 
 
 
 
 
 
 


   
 

CERT-MU AD-2010-2

Multiple Vulnerabilities in Apache Tomcat

Original issue date: 3 February, 2010

Overview

Multiple vulnerabilities have been reported in Apache Tomcat that could allow a remote attacker to traverse directories on the system, caused by an error when deploying WAR files.

Description

  • Apache Tomcat WAR File Directory Traversal Vulnerability

    An input validation error has been reported in Apache Tomcat while deploying WAR files, the WAR files were not checked for directory traversal attempts. This allows an attacker to delete files within the host's work directory or create arbitrary files outside of the web root.

  • Apache Tomcat WAR Deployment Directory Traversal Vulnerability

    An error has been reported when deploying WAR files, after a failed undeploy. A remote attacker could exploit this vulnerability by creating a specially crafted WAR archived that, when deployed on the target system by an authorized user, will overwrite files on the affected system.. Successful exploitation of this vulnerability could allow a remote attacker to cause Denial of Service (DoS) condition.

  • Apache Tomcat Undeploy Failure Vulnerability

    This vulnerability is caused due to an error in setting the autoDeploy attribute for directories placed in the hosts's appBase. This error will fails the undeploying process and some arbitrary files are autodeployed with improper access restrictions. A remote attacker could exploit this vulnerability to bypass security restrictions to gain unauthorized access to the normally restricted files.
Software Affected

  • Apache Tomcat versions 5.5.0 to 5.5.28
  • Apache Tomcat versions 6.0.0 to 6.0.20

Impact

Severity Rating: Medium

Solution

Upgrade to Apache Tomcat version 6.0.24
http://tomcat.apache.org/download-60.cgi

Apply patches for Tomcat 5.x
http://svn.apache.org/viewvc?rev=902650&view=rev

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.

Vendor Information

Apache-Tomcat
http://tomcat.apache.org/security-6.html

CVE Name

CVE-2009-2693
CVE-2009-2902
CVE-2009-2901

References

Apache-Tomcat
http://tomcat.apache.org/security-6.html

vupen
http://www.vupen.com/english/advisories/2010/0213

Secunia
http://secunia.com/advisories/38316/

ISS XFORCE
http://xforce.iss.net/xforce/xfdb/55857

SecurityTracker
http://securitytracker.com/alerts/2010/Jan/1023503.html
http://securitytracker.com/alerts/2010/Jan/1023504.html

SecurityFocus
http://www.securityfocus.com/bid/37945/solution

 
 
News & Events
Safer Internet Day 2012
Computer Security Day 2011
Workshop on Cloud Security
Workshop on Mobile Security
Certificate Award Ceremony for Trainings in Information Security Management
  more...
 
Virus Alerts
RSS Feed
Subscribe Mailing List
 
 
 

Last Updated 20-Jul-2011
Disclaimer Maintained & Hosted by NCB
This site is best viewed in 1024 x 768 resolution. Internet Explorer 6.0 +
09-Jul-2011