Computer Security
[EN] securityvulns.ru no-pyccku


Apache Tomcat privilege escalation
Published:11.11.2011
Source:
SecurityVulns ID:12033
Type:local
Threat Level:
5/10
Description:Privilege escalation via manager app.
Affected:APACHE : Tomcat 7.0
CVE:CVE-2011-3376 (org/apache/catalina/core/DefaultInstanceManager.java in Apache Tomcat 7.x before 7.0.22 does not properly restrict ContainerServlets in the Manager application, which allows local users to gain privileges by using an untrusted web application to access the Manager application's functionality.)
Original documentdocumentAPACHE, [SECURITY] CVE-2011-3376 Apache Tomcat - Privilege Escalation via Manager app (11.11.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod