Computer Security

Apache Tomcat privilege escalation
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Apache Tomcat privilege escalation
Published:11.11.2011
Source:BUGTRAQ
SecurityVulns ID:12033
Type:local
Level:5/10
Description:Privilege escalation via manager app.
Affected:APACHE : Tomcat 7.0
CVE:CVE-2011-3376 (org/apache/catalina/core/DefaultInstanceManager.java in Apache Tomcat 7.x before 7.0.22 does not properly restrict ContainerServlets in the Manager application, which allows local users to gain privileges by using an untrusted web application to access the Manager application's functionality.)
Original documentdocumentAPACHE, [SECURITY] CVE-2011-3376 Apache Tomcat - Privilege Escalation via Manager app (11.11.2011)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru