Multiple Vulnerabilities in Apache Tomcat

Original Issue Date: July 21, 2010

Severity Rating: Low

Systems Affected

• Apache Tomcat versions 5.5.0 through 5.5.29
• Apache Tomcat versions 6.0.0 through 6.0.27
• Apache Tomcat version 7.0.0

Overview

Multiple vulnerabilities have been reported in Apache Tomcat , which could be exploited by remote attackers to disclose sensitive information from the affected systems or cause a Denial of Service (DoS) condition on the affected system.

Description

These vulnerabilities have caused due to an error in the processing of the "Transfer-Encoding" header. A Remote attacker could exploit these vulnerabilities by sending a specially crafted request in the Transfer-Encoding header that interferes with 'recycling of a buffer' , to trigger the failure of subsequent requests or information leaks between the requests.

Successful exploitation of these vulnerabilities could cause a denial of service (application outage) or obtain sensitive information. Vendor Information

Solution

Fixed in the SVN repositories. This will also be fixed in upcoming versions 5.5.30, 6.0.28 and 7.0.1

http://svn.apache.org/viewvc?view=revision&revision=959428
http://svn.apache.org/viewvc?view=revision&revision=958977
http://svn.apache.org/viewvc?view=revision&revision=958911

Vendor Information

Apache Tomcat
http://tomcat.apache.org/security-7.html
http://tomcat.apache.org/security-6.html
http://tomcat.apache.org/security-5.html

References

VUPEN
http://www.vupen.com/english/advisories/2010/1788

Security Tracker
http://securitytracker.com/alerts/2010/Jul/1024180.html

Securityfocus
http://www.securityfocus.com/archive/1/512272

X-Force
http://xforce.iss.net/xforce/xfdb/60264

CVE Name
CVE-2010-2227

Disclaimer

The information provided herein is on "as is" basis, without warranty of any kind.