Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2011-4858 (GCVE-0-2011-4858)
Vulnerability from cvelistv5 – Published: 2012-01-05 19:00 – Updated: 2024-08-07 00:16
VLAI
EPSS
Summary
Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
29 references
Date Public
2011-12-28 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T00:16:35.019Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py"
},
{
"name": "DSA-2401",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2012/dsa-2401"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.nruns.com/_downloads/advisory28122011.pdf"
},
{
"name": "RHSA-2012:0325",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0325.html"
},
{
"name": "HPSBUX02860",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2"
},
{
"name": "RHSA-2012:0078",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0078.html"
},
{
"name": "51200",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/51200"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750521"
},
{
"name": "48791",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/48791"
},
{
"name": "oval:org.mitre.oval:def:18886",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL",
"x_transferred"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18886"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://tomcat.apache.org/tomcat-7.0-doc/changelog.html"
},
{
"name": "RHSA-2012:0075",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0075.html"
},
{
"name": "RHSA-2012:0074",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0074.html"
},
{
"name": "48549",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/48549"
},
{
"name": "RHSA-2012:0089",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0089.html"
},
{
"name": "54971",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/54971"
},
{
"name": "48790",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/48790"
},
{
"name": "55115",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/55115"
},
{
"name": "VU#903934",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/903934"
},
{
"name": "[announce] 20111228 [SECURITY] Apache Tomcat and the hashtable collision DoS vulnerability",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106%40apache.org%3e"
},
{
"name": "SSRT100771",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2"
},
{
"name": "SSRT100728",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2"
},
{
"name": "RHSA-2012:0406",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0406.html"
},
{
"name": "HPSBMU02747",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2"
},
{
"name": "SSRT101146",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2"
},
{
"name": "HPSBUX02741",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2"
},
{
"name": "RHSA-2012:0076",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0076.html"
},
{
"name": "RHSA-2012:0077",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0077.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.ocert.org/advisories/ocert-2011-003.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2011-12-28T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-01-08T20:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py"
},
{
"name": "DSA-2401",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2012/dsa-2401"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.nruns.com/_downloads/advisory28122011.pdf"
},
{
"name": "RHSA-2012:0325",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0325.html"
},
{
"name": "HPSBUX02860",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2"
},
{
"name": "RHSA-2012:0078",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0078.html"
},
{
"name": "51200",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/51200"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750521"
},
{
"name": "48791",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/48791"
},
{
"name": "oval:org.mitre.oval:def:18886",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18886"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://tomcat.apache.org/tomcat-7.0-doc/changelog.html"
},
{
"name": "RHSA-2012:0075",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0075.html"
},
{
"name": "RHSA-2012:0074",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0074.html"
},
{
"name": "48549",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/48549"
},
{
"name": "RHSA-2012:0089",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0089.html"
},
{
"name": "54971",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/54971"
},
{
"name": "48790",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/48790"
},
{
"name": "55115",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/55115"
},
{
"name": "VU#903934",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/903934"
},
{
"name": "[announce] 20111228 [SECURITY] Apache Tomcat and the hashtable collision DoS vulnerability",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106%40apache.org%3e"
},
{
"name": "SSRT100771",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2"
},
{
"name": "SSRT100728",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2"
},
{
"name": "RHSA-2012:0406",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0406.html"
},
{
"name": "HPSBMU02747",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2"
},
{
"name": "SSRT101146",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2"
},
{
"name": "HPSBUX02741",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2"
},
{
"name": "RHSA-2012:0076",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0076.html"
},
{
"name": "RHSA-2012:0077",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0077.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.ocert.org/advisories/ocert-2011-003.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2011-4858",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py",
"refsource": "MISC",
"url": "https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py"
},
{
"name": "DSA-2401",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2012/dsa-2401"
},
{
"name": "http://www.nruns.com/_downloads/advisory28122011.pdf",
"refsource": "MISC",
"url": "http://www.nruns.com/_downloads/advisory28122011.pdf"
},
{
"name": "RHSA-2012:0325",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0325.html"
},
{
"name": "HPSBUX02860",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2"
},
{
"name": "RHSA-2012:0078",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0078.html"
},
{
"name": "51200",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/51200"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=750521",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750521"
},
{
"name": "48791",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/48791"
},
{
"name": "oval:org.mitre.oval:def:18886",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18886"
},
{
"name": "http://tomcat.apache.org/tomcat-7.0-doc/changelog.html",
"refsource": "CONFIRM",
"url": "http://tomcat.apache.org/tomcat-7.0-doc/changelog.html"
},
{
"name": "RHSA-2012:0075",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0075.html"
},
{
"name": "RHSA-2012:0074",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0074.html"
},
{
"name": "48549",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/48549"
},
{
"name": "RHSA-2012:0089",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0089.html"
},
{
"name": "54971",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/54971"
},
{
"name": "48790",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/48790"
},
{
"name": "55115",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/55115"
},
{
"name": "VU#903934",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/903934"
},
{
"name": "[announce] 20111228 [SECURITY] Apache Tomcat and the hashtable collision DoS vulnerability",
"refsource": "MLIST",
"url": "http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106@apache.org%3e"
},
{
"name": "SSRT100771",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2"
},
{
"name": "SSRT100728",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2"
},
{
"name": "RHSA-2012:0406",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0406.html"
},
{
"name": "HPSBMU02747",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2"
},
{
"name": "SSRT101146",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2"
},
{
"name": "HPSBUX02741",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2"
},
{
"name": "RHSA-2012:0076",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0076.html"
},
{
"name": "RHSA-2012:0077",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0077.html"
},
{
"name": "http://www.ocert.org/advisories/ocert-2011-003.html",
"refsource": "MISC",
"url": "http://www.ocert.org/advisories/ocert-2011-003.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2011-4858",
"datePublished": "2012-01-05T19:00:00.000Z",
"dateReserved": "2011-12-16T00:00:00.000Z",
"dateUpdated": "2024-08-07T00:16:35.019Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2011-4858",
"date": "2026-05-30",
"epss": "0.766",
"percentile": "0.98967"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2011-4858\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2012-01-05T19:55:01.033\",\"lastModified\":\"2026-04-29T01:13:23.040\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.\"},{\"lang\":\"es\",\"value\":\"Apache Tomcat antes de v5.5.35, v6.x antes de v6.0.35 y v7.x antes de v7.0.23 calcula los valores hash de los par\u00e1metros de los formularios, sin restringir la capacidad de desencadenar colisiones de hash de forma predecible. Esto permite a atacantes remotos provocar una denegaci\u00f3n de servicio (por consumo de CPU) mediante el env\u00edo de gran cantidad de par\u00e1metros especialmente modificados.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-399\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:5.5.35:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2757803-A75D-4B98-8473-8B5C53F4D2B9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49E3C039-A949-4F1B-892A-57147EECB249\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F28C7801-41B9-4552-BA1E-577967BCBBEE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25B21085-7259-4685-9D1F-FF98E6489E10\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"635EE321-2A1F-4FF8-95BE-0C26591969D9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A81B035-8598-4D2C-B45F-C6C9D4B10C2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1096947-82A6-4EA8-A4F2-00D91E3F7DAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0EBFA1D3-16A6-4041-BB30-51D2EE0F2AF4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B70B372F-EFFD-4AF7-99B5-7D1B23A0C54C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9C95ADA4-66F5-45C4-A677-ACE22367A75A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11951A10-39A2-4FF5-8C43-DF94730FB794\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"351E5BCF-A56B-4D91-BA3C-21A4B77D529A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DC2BBB4-171E-4EFF-A575-A5B7FF031755\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B6B0504-27C1-4824-A928-A878CBBAB32D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE81AD36-ACD1-4C6C-8E7C-5326D1DA3045\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D903956B-14F5-4177-AF12-0A5F1846D3C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81F847DC-A2F5-456C-9038-16A0E85F4C3B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF3EBD00-1E1E-452D-AFFB-08A6BD111DDD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6B93A3A-D487-4CA1-8257-26F8FE287B8B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD8802B2-57E0-4AA6-BC8E-00DE60468569\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8461DF95-18DC-4BF5-A703-7F19DA88DC30\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F4C9BCF-9C73-4991-B02F-E08C5DA06EBA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0682A754-5E5E-48D4-836A-16841FD59445\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A8F2DFC-6A74-43AB-A813-957A1F7097A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.23:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"277332E0-60D9-4318-A068-901F3B037FA9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2823789C-2CB6-4300-94DB-BDBE83ABA8E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.25:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"759588B8-DD36-474E-978B-75638962E743\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C5416C76-46ED-4CB1-A7F8-F24EA16DE7F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.27:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A61429EE-4331-430C-9830-58DCCBCBCB58\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31B3593F-CEDF-423C-90F8-F88EED87DC3E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.29:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AE7862B2-E1FA-4E16-92CD-8918AB461D9A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A9E03BE3-60CC-4415-B993-D0BB00F87A30\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.31:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE92E59A-FF0D-4D1A-8B12-CC41A7E1FD3C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.32:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BFD64FE7-ABAF-49F3-B8D0-91C37C822F4B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.33:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"48E5E8C3-21AD-4230-B945-AB7DE66307B9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:6.0.34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2949EC36-0056-43F0-93EC-681EAC22B112\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F8C62EF-1B67-456A-9C66-755439CF8556\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A819E245-D641-4F19-9139-6C940504F6E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8C381275-10C5-4939-BCE3-0D1F3B3CB2EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7205475A-6D04-4042-B24E-1DA5A57029B7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"08022987-B36B-4F63-88A5-A8F59195DF4A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF4B7557-EF35-451E-B55D-3296966695AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8980E61E-27BE-4858-82B3-C0E8128AF521\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8756BF9B-3E24-4677-87AE-31CE776541F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88CE057E-2092-4C98-8D0C-75CF439D0A9C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F194580-EE6D-4E38-87F3-F0661262256B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A9731BAA-4C6C-4259-B786-F577D8A90FA1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F74A421-D019-4248-84B8-C70D4D9A8A95\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2BA27FF9-4C66-4E17-95C0-1CB2DAA6AFC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"05346F5A-FB52-4376-AAC7-9A5308216545\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"305688F2-50A6-41FB-8614-BC589DB9A789\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D24AA431-C436-4AA5-85DF-B9AAFF2548FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25966344-15D5-4101-9346-B06BFD2DFFF5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11F4CBAC-27B1-4EFF-955A-A63B457D0578\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD55B338-9DBE-4643-ABED-A08964D3AF7C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D4F710E-06EA-48F4-AC6A-6F143950F015\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C4936C2-0B2D-4C44-98C3-443090965F5E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.21:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"48453405-2319-4327-9F4C-6F70B49452C6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:7.0.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49DD9544-6424-41A6-AEC0-EC19B8A10E71\"}]}]}],\"references\":[{\"url\":\"http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106%40apache.org%3e\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0074.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0075.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0076.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0077.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0078.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0089.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0325.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0406.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/48549\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/48790\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/48791\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/54971\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/55115\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://tomcat.apache.org/tomcat-7.0-doc/changelog.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2012/dsa-2401\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.kb.cert.org/vuls/id/903934\",\"source\":\"cve@mitre.org\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.nruns.com/_downloads/advisory28122011.pdf\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ocert.org/advisories/ocert-2011-003.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/51200\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=750521\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18886\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106%40apache.org%3e\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0074.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0075.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0076.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0077.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0078.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0089.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0325.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://rhn.redhat.com/errata/RHSA-2012-0406.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/48549\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/48790\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/48791\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/54971\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/55115\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://tomcat.apache.org/tomcat-7.0-doc/changelog.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2012/dsa-2401\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.kb.cert.org/vuls/id/903934\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.nruns.com/_downloads/advisory28122011.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ocert.org/advisories/ocert-2011-003.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/51200\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=750521\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18886\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
CERTA-2012-AVI-063
Vulnerability from certfr_avis - Published: 2012-02-08 - Updated: 2012-02-08
Plusieurs vulnérabilités affectant Apache Tomcat Servlet Engine ont été corrigées. Celles-ci permettent à un attaquant de réaliser un déni de service à distance ou de contourner des restrictions d'accès.
Description
Quatre vulnérabilités ont été corrigées. Trois d'entre elles permettent à un attaquant de réaliser un déni de service à distance au moyen de requêtes spécialement conçues (CVE-2011-4858, CVE-2011-4885 et CVE-2012-0022). La quatrième (CVE-2006-7243) permet à un attaquant de placer des fichiers sur le serveur en contournant des restrictions d'accès.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Systèmes HP-UX versions B.11.23 et B.11.31 avec Apache Web Server Suite versions antérieures à 3.21.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cp\u003eSyst\u00e8mes HP-UX versions B.11.23 et B.11.31 avec Apache Web Server Suite versions ant\u00e9rieures \u00e0 3.21.\u003c/p\u003e",
"content": "## Description\n\nQuatre vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es. Trois d\u0027entre elles permettent\n\u00e0 un attaquant de r\u00e9aliser un d\u00e9ni de service \u00e0 distance au moyen de\nrequ\u00eates sp\u00e9cialement con\u00e7ues (CVE-2011-4858, CVE-2011-4885 et\nCVE-2012-0022). La quatri\u00e8me (CVE-2006-7243) permet \u00e0 un attaquant de\nplacer des fichiers sur le serveur en contournant des restrictions\nd\u0027acc\u00e8s.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-4858",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4858"
},
{
"name": "CVE-2006-7243",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-7243"
},
{
"name": "CVE-2012-0022",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0022"
},
{
"name": "CVE-2011-4885",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4885"
}
],
"initial_release_date": "2012-02-08T00:00:00",
"last_revision_date": "2012-02-08T00:00:00",
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 HP c03183543 du 06 f\u00e9vrier 2012 :",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03183543"
}
],
"reference": "CERTA-2012-AVI-063",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-02-08T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "Plusieurs vuln\u00e9rabilit\u00e9s affectant Apache Tomcat Servlet Engine ont \u00e9t\u00e9\ncorrig\u00e9es. Celles-ci permettent \u00e0 un attaquant de r\u00e9aliser un d\u00e9ni de\nservice \u00e0 distance ou de contourner des restrictions d\u0027acc\u00e8s.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Apache pour HP-UX",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 HP c03183543 du 6 f\u00e9vrier 2012",
"url": null
}
]
}
CERTA-2012-AVI-065
Vulnerability from certfr_avis - Published: 2012-02-08 - Updated: 2012-02-08
De multiples vulnérabilités ont été corrigées dans JBoss Operations Network.
Description
Une mise à jour de JBoss Operations Network corrige de multiples vulnérabilités. Les vulnérabilités associées à un numéro CVE sont les suivantes :
- CVE-2012-0052 et CVE-2012-0062 : ces vulnérabilités permettent à un utilisateur distant malintentionné de détourner la session d'un agent approuvé et de voler son jeton de sécurité. Ceci permettra à l'attaquant de récupérer des informations sensibles à propos du serveur sur lequel l'agent s'exécute ;
- CVE-2011-4858 : cette vulnérabilité permet à un attaquant d'effectuer un déni de service à distance sur le serveur JBoss Web ;
- CVE-2011-3206 : cette vulnérabilité concerne de multiples failles XSS dans l'interface d'administration de JBoss Operations Network ;
- CVE-2011-4573 : cette vulnérabilité concerne une vérification qui n'est pas effectuée correctement par JBoss Operations Network lorsqu'un utilisateur tente de supprimer une mise à jour de configuration de plugin (plug-in configuration update).
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
JBoss Operations Network versions 2.4.1 et inférieures.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | |
|---|---|---|---|
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cP\u003e\u003cSPAN class=\"textit\"\u003eJBoss Operations Network\u003c/SPAN\u003e versions 2.4.1 et inf\u00e9rieures.\u003c/P\u003e",
"content": "## Description\n\nUne mise \u00e0 jour de JBoss Operations Network corrige de multiples\nvuln\u00e9rabilit\u00e9s. Les vuln\u00e9rabilit\u00e9s associ\u00e9es \u00e0 un num\u00e9ro CVE sont les\nsuivantes :\n\n- CVE-2012-0052 et CVE-2012-0062 : ces vuln\u00e9rabilit\u00e9s permettent \u00e0 un\n utilisateur distant malintentionn\u00e9 de d\u00e9tourner la session d\u0027un\n agent approuv\u00e9 et de voler son jeton de s\u00e9curit\u00e9. Ceci permettra \u00e0\n l\u0027attaquant de r\u00e9cup\u00e9rer des informations sensibles \u00e0 propos du\n serveur sur lequel l\u0027agent s\u0027ex\u00e9cute ;\n- CVE-2011-4858 : cette vuln\u00e9rabilit\u00e9 permet \u00e0 un attaquant\n d\u0027effectuer un d\u00e9ni de service \u00e0 distance sur le serveur JBoss Web ;\n- CVE-2011-3206 : cette vuln\u00e9rabilit\u00e9 concerne de multiples failles\n XSS dans l\u0027interface d\u0027administration de JBoss Operations Network ;\n- CVE-2011-4573 : cette vuln\u00e9rabilit\u00e9 concerne une v\u00e9rification qui\n n\u0027est pas effectu\u00e9e correctement par JBoss Operations Network\n lorsqu\u0027un utilisateur tente de supprimer une mise \u00e0 jour de\n configuration de plugin (plug-in configuration update).\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-4858",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4858"
},
{
"name": "CVE-2011-4573",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4573"
},
{
"name": "CVE-2011-3206",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3206"
},
{
"name": "CVE-2012-0052",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0052"
},
{
"name": "CVE-2012-0062",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0062"
}
],
"initial_release_date": "2012-02-08T00:00:00",
"last_revision_date": "2012-02-08T00:00:00",
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2012:0089 du 08 f\u00e9vrier 2012 :",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0089.html"
}
],
"reference": "CERTA-2012-AVI-065",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-02-08T00:00:00.000000"
}
],
"risks": [
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eJBoss Operations Network\u003c/span\u003e.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans JBoss Operations Network",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 REDHAT RHSA-2012:0089-1 du 01 f\u00e9vrier 2012",
"url": null
}
]
}
CERTA-2012-AVI-066
Vulnerability from certfr_avis - Published: 2012-02-08 - Updated: 2012-02-08
Plusieurs vulnérabilités permettant de contourner la politique de sécurité, d'exécuter du code arbitraire ou de réaliser un déni de service à distance ont été corrigées dans JBoss Enterprise Portal Platform.
Description
De multiples vulnérabilités ont été corrigées dans JBoss Enterprise Portal Platform. Ces vulnérabilités peuvent être exploitées pour :
- exécuter du code Java arbitraire à distance (CVE-2011-1484) ;
- provoquer un déni de service à distance (CVE-2011-4858) ;
- effectuer des rejeux de session (CVE-2011-1184, CVE-2011-5062, CVE-2011-5063, CVE-2011-5064) ;
- effectuer des requêtes non authentifiées (CVE-2011-4085) ;
- contourner les restrictions d'accès à certains fichiers (CVE-2011-2526).
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
JBoss Enterprise Portal Platform 4.x.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cp\u003eJBoss Enterprise Portal Platform 4.x.\u003c/p\u003e",
"content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans JBoss Enterprise\nPortal Platform. Ces vuln\u00e9rabilit\u00e9s peuvent \u00eatre exploit\u00e9es pour :\n\n- ex\u00e9cuter du code Java arbitraire \u00e0 distance (CVE-2011-1484) ;\n- provoquer un d\u00e9ni de service \u00e0 distance (CVE-2011-4858) ;\n- effectuer des rejeux de session (CVE-2011-1184, CVE-2011-5062,\n CVE-2011-5063, CVE-2011-5064) ;\n- effectuer des requ\u00eates non authentifi\u00e9es (CVE-2011-4085) ;\n- contourner les restrictions d\u0027acc\u00e8s \u00e0 certains fichiers\n (CVE-2011-2526).\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-5062",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5062"
},
{
"name": "CVE-2011-1484",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1484"
},
{
"name": "CVE-2011-4858",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4858"
},
{
"name": "CVE-2011-4085",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4085"
},
{
"name": "CVE-2011-5063",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5063"
},
{
"name": "CVE-2011-1184",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1184"
},
{
"name": "CVE-2011-2526",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2526"
},
{
"name": "CVE-2011-5064",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5064"
}
],
"initial_release_date": "2012-02-08T00:00:00",
"last_revision_date": "2012-02-08T00:00:00",
"links": [
{
"title": "Bulletin de s\u00e9curit\u00e9 RedHat RHSA-2012:0091 du 02 f\u00e9vrier 2012 :",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0091.html"
}
],
"reference": "CERTA-2012-AVI-066",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2012-02-08T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "Plusieurs vuln\u00e9rabilit\u00e9s permettant de contourner la politique de\ns\u00e9curit\u00e9, d\u0027ex\u00e9cuter du code arbitraire ou de r\u00e9aliser un d\u00e9ni de\nservice \u00e0 distance ont \u00e9t\u00e9 corrig\u00e9es dans JBoss Enterprise Portal\nPlatform.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans JBoss Enterprise Platform",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Red Hat RHSA-2012-0091",
"url": null
}
]
}
CERTA-2013-AVI-440
Vulnerability from certfr_avis - Published: 2013-07-29 - Updated: 2013-07-29
De multiples vulnérabilités ont été corrigées dans HP Network Node Manager I. Elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service à distance et un contournement de la politique de sécurité.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "HP Network Node Manager I version 9.1 ant\u00e9rieures au correctif HF-NNMi-9.1xP5-JBoss-20130417",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
},
{
"description": "HP Network Node Manager I version 9.0 ant\u00e9rieures au correctif HF-NNMi-9.0xP5-JBoss-20130417",
"product": {
"name": "N/A",
"vendor": {
"name": "N/A",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-2196",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2196"
},
{
"name": "CVE-2011-4605",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4605"
},
{
"name": "CVE-2010-1429",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1429"
},
{
"name": "CVE-2011-4858",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4858"
},
{
"name": "CVE-2010-0738",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-0738"
},
{
"name": "CVE-2010-1428",
"url": "https://www.cve.org/CVERecord?id=CVE-2010-1428"
},
{
"name": "CVE-2009-3554",
"url": "https://www.cve.org/CVERecord?id=CVE-2009-3554"
},
{
"name": "CVE-2012-3546",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-3546"
},
{
"name": "CVE-2007-5333",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-5333"
},
{
"name": "CVE-2011-1483",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1483"
}
],
"initial_release_date": "2013-07-29T00:00:00",
"last_revision_date": "2013-07-29T00:00:00",
"links": [],
"reference": "CERTA-2013-AVI-440",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2013-07-29T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eHP Network Node Manager I\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire, un d\u00e9ni de\nservice \u00e0 distance et un contournement de la politique de s\u00e9curit\u00e9.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans HP Network Node Manager I",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 HP du 24 juillet 2013",
"url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03824583"
}
]
}
FKIE_CVE-2011-4858
Vulnerability from fkie_nvd - Published: 2012-01-05 19:55 - Updated: 2026-04-29 01:13
Severity
Summary
Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apache:tomcat:5.5.35:*:*:*:*:*:*:*",
"matchCriteriaId": "A2757803-A75D-4B98-8473-8B5C53F4D2B9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "49E3C039-A949-4F1B-892A-57147EECB249",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "F28C7801-41B9-4552-BA1E-577967BCBBEE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "25B21085-7259-4685-9D1F-FF98E6489E10",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "635EE321-2A1F-4FF8-95BE-0C26591969D9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "9A81B035-8598-4D2C-B45F-C6C9D4B10C2F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "E1096947-82A6-4EA8-A4F2-00D91E3F7DAF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "0EBFA1D3-16A6-4041-BB30-51D2EE0F2AF4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "B70B372F-EFFD-4AF7-99B5-7D1B23A0C54C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "9C95ADA4-66F5-45C4-A677-ACE22367A75A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.9:*:*:*:*:*:*:*",
"matchCriteriaId": "11951A10-39A2-4FF5-8C43-DF94730FB794",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.10:*:*:*:*:*:*:*",
"matchCriteriaId": "351E5BCF-A56B-4D91-BA3C-21A4B77D529A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.11:*:*:*:*:*:*:*",
"matchCriteriaId": "2DC2BBB4-171E-4EFF-A575-A5B7FF031755",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.12:*:*:*:*:*:*:*",
"matchCriteriaId": "6B6B0504-27C1-4824-A928-A878CBBAB32D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.13:*:*:*:*:*:*:*",
"matchCriteriaId": "CE81AD36-ACD1-4C6C-8E7C-5326D1DA3045",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.14:*:*:*:*:*:*:*",
"matchCriteriaId": "D903956B-14F5-4177-AF12-0A5F1846D3C4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.15:*:*:*:*:*:*:*",
"matchCriteriaId": "81F847DC-A2F5-456C-9038-16A0E85F4C3B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.16:*:*:*:*:*:*:*",
"matchCriteriaId": "AF3EBD00-1E1E-452D-AFFB-08A6BD111DDD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.17:*:*:*:*:*:*:*",
"matchCriteriaId": "C6B93A3A-D487-4CA1-8257-26F8FE287B8B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.18:*:*:*:*:*:*:*",
"matchCriteriaId": "BD8802B2-57E0-4AA6-BC8E-00DE60468569",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.19:*:*:*:*:*:*:*",
"matchCriteriaId": "8461DF95-18DC-4BF5-A703-7F19DA88DC30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.20:*:*:*:*:*:*:*",
"matchCriteriaId": "1F4C9BCF-9C73-4991-B02F-E08C5DA06EBA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.21:*:*:*:*:*:*:*",
"matchCriteriaId": "0682A754-5E5E-48D4-836A-16841FD59445",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.22:*:*:*:*:*:*:*",
"matchCriteriaId": "3A8F2DFC-6A74-43AB-A813-957A1F7097A9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.23:*:*:*:*:*:*:*",
"matchCriteriaId": "277332E0-60D9-4318-A068-901F3B037FA9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.24:*:*:*:*:*:*:*",
"matchCriteriaId": "2823789C-2CB6-4300-94DB-BDBE83ABA8E3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.25:*:*:*:*:*:*:*",
"matchCriteriaId": "759588B8-DD36-474E-978B-75638962E743",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.26:*:*:*:*:*:*:*",
"matchCriteriaId": "C5416C76-46ED-4CB1-A7F8-F24EA16DE7F9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.27:*:*:*:*:*:*:*",
"matchCriteriaId": "A61429EE-4331-430C-9830-58DCCBCBCB58",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.28:*:*:*:*:*:*:*",
"matchCriteriaId": "31B3593F-CEDF-423C-90F8-F88EED87DC3E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.29:*:*:*:*:*:*:*",
"matchCriteriaId": "AE7862B2-E1FA-4E16-92CD-8918AB461D9A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.30:*:*:*:*:*:*:*",
"matchCriteriaId": "A9E03BE3-60CC-4415-B993-D0BB00F87A30",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.31:*:*:*:*:*:*:*",
"matchCriteriaId": "CE92E59A-FF0D-4D1A-8B12-CC41A7E1FD3C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.32:*:*:*:*:*:*:*",
"matchCriteriaId": "BFD64FE7-ABAF-49F3-B8D0-91C37C822F4B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.33:*:*:*:*:*:*:*",
"matchCriteriaId": "48E5E8C3-21AD-4230-B945-AB7DE66307B9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:6.0.34:*:*:*:*:*:*:*",
"matchCriteriaId": "2949EC36-0056-43F0-93EC-681EAC22B112",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*",
"matchCriteriaId": "0F8C62EF-1B67-456A-9C66-755439CF8556",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A819E245-D641-4F19-9139-6C940504F6E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*",
"matchCriteriaId": "8C381275-10C5-4939-BCE3-0D1F3B3CB2EE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*",
"matchCriteriaId": "7205475A-6D04-4042-B24E-1DA5A57029B7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*",
"matchCriteriaId": "08022987-B36B-4F63-88A5-A8F59195DF4A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*",
"matchCriteriaId": "FF4B7557-EF35-451E-B55D-3296966695AC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*",
"matchCriteriaId": "8980E61E-27BE-4858-82B3-C0E8128AF521",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*",
"matchCriteriaId": "8756BF9B-3E24-4677-87AE-31CE776541F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*",
"matchCriteriaId": "88CE057E-2092-4C98-8D0C-75CF439D0A9C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*",
"matchCriteriaId": "8F194580-EE6D-4E38-87F3-F0661262256B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.10:*:*:*:*:*:*:*",
"matchCriteriaId": "A9731BAA-4C6C-4259-B786-F577D8A90FA1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.11:*:*:*:*:*:*:*",
"matchCriteriaId": "1F74A421-D019-4248-84B8-C70D4D9A8A95",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.12:*:*:*:*:*:*:*",
"matchCriteriaId": "2BA27FF9-4C66-4E17-95C0-1CB2DAA6AFC8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.13:*:*:*:*:*:*:*",
"matchCriteriaId": "05346F5A-FB52-4376-AAC7-9A5308216545",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.14:*:*:*:*:*:*:*",
"matchCriteriaId": "305688F2-50A6-41FB-8614-BC589DB9A789",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.15:*:*:*:*:*:*:*",
"matchCriteriaId": "D24AA431-C436-4AA5-85DF-B9AAFF2548FC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.16:*:*:*:*:*:*:*",
"matchCriteriaId": "25966344-15D5-4101-9346-B06BFD2DFFF5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.17:*:*:*:*:*:*:*",
"matchCriteriaId": "11F4CBAC-27B1-4EFF-955A-A63B457D0578",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.18:*:*:*:*:*:*:*",
"matchCriteriaId": "FD55B338-9DBE-4643-ABED-A08964D3AF7C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.19:*:*:*:*:*:*:*",
"matchCriteriaId": "0D4F710E-06EA-48F4-AC6A-6F143950F015",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.20:*:*:*:*:*:*:*",
"matchCriteriaId": "2C4936C2-0B2D-4C44-98C3-443090965F5E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.21:*:*:*:*:*:*:*",
"matchCriteriaId": "48453405-2319-4327-9F4C-6F70B49452C6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:tomcat:7.0.22:*:*:*:*:*:*:*",
"matchCriteriaId": "49DD9544-6424-41A6-AEC0-EC19B8A10E71",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters."
},
{
"lang": "es",
"value": "Apache Tomcat antes de v5.5.35, v6.x antes de v6.0.35 y v7.x antes de v7.0.23 calcula los valores hash de los par\u00e1metros de los formularios, sin restringir la capacidad de desencadenar colisiones de hash de forma predecible. Esto permite a atacantes remotos provocar una denegaci\u00f3n de servicio (por consumo de CPU) mediante el env\u00edo de gran cantidad de par\u00e1metros especialmente modificados."
}
],
"id": "CVE-2011-4858",
"lastModified": "2026-04-29T01:13:23.040",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2012-01-05T19:55:01.033",
"references": [
{
"source": "cve@mitre.org",
"url": "http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106%40apache.org%3e"
},
{
"source": "cve@mitre.org",
"url": "http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2"
},
{
"source": "cve@mitre.org",
"url": "http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2"
},
{
"source": "cve@mitre.org",
"url": "http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2"
},
{
"source": "cve@mitre.org",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0074.html"
},
{
"source": "cve@mitre.org",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0075.html"
},
{
"source": "cve@mitre.org",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0076.html"
},
{
"source": "cve@mitre.org",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0077.html"
},
{
"source": "cve@mitre.org",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0078.html"
},
{
"source": "cve@mitre.org",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0089.html"
},
{
"source": "cve@mitre.org",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0325.html"
},
{
"source": "cve@mitre.org",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0406.html"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/48549"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/48790"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/48791"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/54971"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/55115"
},
{
"source": "cve@mitre.org",
"url": "http://tomcat.apache.org/tomcat-7.0-doc/changelog.html"
},
{
"source": "cve@mitre.org",
"url": "http://www.debian.org/security/2012/dsa-2401"
},
{
"source": "cve@mitre.org",
"tags": [
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/903934"
},
{
"source": "cve@mitre.org",
"url": "http://www.nruns.com/_downloads/advisory28122011.pdf"
},
{
"source": "cve@mitre.org",
"url": "http://www.ocert.org/advisories/ocert-2011-003.html"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/51200"
},
{
"source": "cve@mitre.org",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750521"
},
{
"source": "cve@mitre.org",
"url": "https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py"
},
{
"source": "cve@mitre.org",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18886"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106%40apache.org%3e"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0074.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0075.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0076.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0077.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0078.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0089.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0325.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0406.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/48549"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/48790"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/48791"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/54971"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/55115"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://tomcat.apache.org/tomcat-7.0-doc/changelog.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2012/dsa-2401"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/903934"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.nruns.com/_downloads/advisory28122011.pdf"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.ocert.org/advisories/ocert-2011-003.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/51200"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750521"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18886"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-399"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-WR3M-GW98-MC3J
Vulnerability from github – Published: 2022-05-14 03:52 – Updated: 2022-07-13 18:25
VLAI
Summary
Improper Input Validation in Apache Tomcat
Details
Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
{
"affected": [
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.tomcat:tomcat"
},
"ranges": [
{
"events": [
{
"introduced": "5.5.0"
},
{
"fixed": "5.5.35"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.tomcat:tomcat"
},
"ranges": [
{
"events": [
{
"introduced": "6.0.0"
},
{
"fixed": "6.0.35"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.tomcat:tomcat"
},
"ranges": [
{
"events": [
{
"introduced": "7.0.0"
},
{
"fixed": "7.0.23"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2011-4858"
],
"database_specific": {
"cwe_ids": [
"CWE-20"
],
"github_reviewed": true,
"github_reviewed_at": "2022-07-13T18:25:49Z",
"nvd_published_at": "2012-01-05T19:55:00Z",
"severity": "MODERATE"
},
"details": "Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.",
"id": "GHSA-wr3m-gw98-mc3j",
"modified": "2022-07-13T18:25:49Z",
"published": "2022-05-14T03:52:45Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4858"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750521"
},
{
"type": "WEB",
"url": "https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py"
},
{
"type": "PACKAGE",
"url": "https://github.com/apache/tomcat"
},
{
"type": "WEB",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18886"
},
{
"type": "WEB",
"url": "http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106@apache.org%3e"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0074.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0075.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0076.html"
},
{
"type": "WEB",
"url": "http://tomcat.apache.org/tomcat-7.0-doc/changelog.html"
},
{
"type": "WEB",
"url": "http://www.debian.org/security/2012/dsa-2401"
},
{
"type": "WEB",
"url": "http://www.kb.cert.org/vuls/id/903934"
},
{
"type": "WEB",
"url": "http://www.nruns.com/_downloads/advisory28122011.pdf"
},
{
"type": "WEB",
"url": "http://www.ocert.org/advisories/ocert-2011-003.html"
}
],
"schema_version": "1.4.0",
"severity": [],
"summary": "Improper Input Validation in Apache Tomcat"
}
GSD-2011-4858
Vulnerability from gsd - Updated: 2023-12-13 01:19Details
Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2011-4858",
"description": "Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.",
"id": "GSD-2011-4858",
"references": [
"https://www.suse.com/security/cve/CVE-2011-4858.html",
"https://www.debian.org/security/2012/dsa-2401",
"https://access.redhat.com/errata/RHSA-2012:0682",
"https://access.redhat.com/errata/RHSA-2012:0681",
"https://access.redhat.com/errata/RHSA-2012:0680",
"https://access.redhat.com/errata/RHSA-2012:0679",
"https://access.redhat.com/errata/RHSA-2012:0475",
"https://access.redhat.com/errata/RHSA-2012:0474",
"https://access.redhat.com/errata/RHSA-2012:0406",
"https://access.redhat.com/errata/RHSA-2012:0325",
"https://access.redhat.com/errata/RHSA-2012:0091",
"https://access.redhat.com/errata/RHSA-2012:0089",
"https://access.redhat.com/errata/RHSA-2012:0078",
"https://access.redhat.com/errata/RHSA-2012:0077",
"https://access.redhat.com/errata/RHSA-2012:0076",
"https://access.redhat.com/errata/RHSA-2012:0075",
"https://access.redhat.com/errata/RHSA-2012:0074",
"https://access.redhat.com/errata/RHSA-2012:0041",
"https://linux.oracle.com/cve/CVE-2011-4858.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2011-4858"
],
"details": "Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.",
"id": "GSD-2011-4858",
"modified": "2023-12-13T01:19:06.079935Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2011-4858",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py",
"refsource": "MISC",
"url": "https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py"
},
{
"name": "DSA-2401",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2012/dsa-2401"
},
{
"name": "http://www.nruns.com/_downloads/advisory28122011.pdf",
"refsource": "MISC",
"url": "http://www.nruns.com/_downloads/advisory28122011.pdf"
},
{
"name": "RHSA-2012:0325",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0325.html"
},
{
"name": "HPSBUX02860",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2"
},
{
"name": "RHSA-2012:0078",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0078.html"
},
{
"name": "51200",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/51200"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=750521",
"refsource": "CONFIRM",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750521"
},
{
"name": "48791",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/48791"
},
{
"name": "oval:org.mitre.oval:def:18886",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18886"
},
{
"name": "http://tomcat.apache.org/tomcat-7.0-doc/changelog.html",
"refsource": "CONFIRM",
"url": "http://tomcat.apache.org/tomcat-7.0-doc/changelog.html"
},
{
"name": "RHSA-2012:0075",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0075.html"
},
{
"name": "RHSA-2012:0074",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0074.html"
},
{
"name": "48549",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/48549"
},
{
"name": "RHSA-2012:0089",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0089.html"
},
{
"name": "54971",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/54971"
},
{
"name": "48790",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/48790"
},
{
"name": "55115",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/55115"
},
{
"name": "VU#903934",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/903934"
},
{
"name": "[announce] 20111228 [SECURITY] Apache Tomcat and the hashtable collision DoS vulnerability",
"refsource": "MLIST",
"url": "http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106@apache.org%3e"
},
{
"name": "SSRT100771",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2"
},
{
"name": "SSRT100728",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2"
},
{
"name": "RHSA-2012:0406",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0406.html"
},
{
"name": "HPSBMU02747",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2"
},
{
"name": "SSRT101146",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2"
},
{
"name": "HPSBUX02741",
"refsource": "HP",
"url": "http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2"
},
{
"name": "RHSA-2012:0076",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0076.html"
},
{
"name": "RHSA-2012:0077",
"refsource": "REDHAT",
"url": "http://rhn.redhat.com/errata/RHSA-2012-0077.html"
},
{
"name": "http://www.ocert.org/advisories/ocert-2011-003.html",
"refsource": "MISC",
"url": "http://www.ocert.org/advisories/ocert-2011-003.html"
}
]
}
},
"gitlab.com": {
"advisories": [
{
"affected_range": "[5.5.0,5.5.35),[6.0.0,6.0.35),[7.0.0,7.0.23)",
"affected_versions": "All versions starting from 5.5.0 before 5.5.35, all versions starting from 6.0.0 before 6.0.35, all versions starting from 7.0.0 before 7.0.23",
"cvss_v2": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"cwe_ids": [
"CWE-1035",
"CWE-399",
"CWE-937"
],
"date": "2022-07-13",
"description": "Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.",
"fixed_versions": [
"5.5.35",
"6.0.35",
"7.0.23"
],
"identifier": "CVE-2011-4858",
"identifiers": [
"GHSA-wr3m-gw98-mc3j",
"CVE-2011-4858"
],
"not_impacted": "All versions before 5.5.0, all versions starting from 5.5.35 before 6.0.0, all versions starting from 6.0.35 before 7.0.0, all versions starting from 7.0.23",
"package_slug": "maven/org.apache.tomcat/tomcat",
"pubdate": "2022-05-14",
"solution": "Upgrade to versions 5.5.35, 6.0.35, 7.0.23 or above.",
"title": "Improper Input Validation in Apache Tomcat",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2011-4858",
"https://bugzilla.redhat.com/show_bug.cgi?id=750521",
"https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py",
"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18886",
"http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106@apache.org%3e",
"http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2",
"http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2",
"http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2",
"http://rhn.redhat.com/errata/RHSA-2012-0074.html",
"http://rhn.redhat.com/errata/RHSA-2012-0075.html",
"http://rhn.redhat.com/errata/RHSA-2012-0076.html",
"http://tomcat.apache.org/tomcat-7.0-doc/changelog.html",
"http://www.debian.org/security/2012/dsa-2401",
"http://www.kb.cert.org/vuls/id/903934",
"http://www.nruns.com/_downloads/advisory28122011.pdf",
"http://www.ocert.org/advisories/ocert-2011-003.html",
"https://github.com/advisories/GHSA-wr3m-gw98-mc3j"
],
"uuid": "d69b48bf-a7d7-4b2d-a08a-90c9708b2e2a"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.33:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.34:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.26:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.25:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.30:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.29:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.21:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.20:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.19:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.18:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:5.5.35:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.28:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.27:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.19:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.18:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.17:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.16:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.32:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.31:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.24:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.23:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.22:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.15:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:6.0.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.22:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.21:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.20:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2011-4858"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-399"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=750521",
"refsource": "CONFIRM",
"tags": [],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750521"
},
{
"name": "[announce] 20111228 [SECURITY] Apache Tomcat and the hashtable collision DoS vulnerability",
"refsource": "MLIST",
"tags": [],
"url": "http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106@apache.org%3e"
},
{
"name": "http://tomcat.apache.org/tomcat-7.0-doc/changelog.html",
"refsource": "CONFIRM",
"tags": [],
"url": "http://tomcat.apache.org/tomcat-7.0-doc/changelog.html"
},
{
"name": "VU#903934",
"refsource": "CERT-VN",
"tags": [
"US Government Resource"
],
"url": "http://www.kb.cert.org/vuls/id/903934"
},
{
"name": "http://www.nruns.com/_downloads/advisory28122011.pdf",
"refsource": "MISC",
"tags": [],
"url": "http://www.nruns.com/_downloads/advisory28122011.pdf"
},
{
"name": "http://www.ocert.org/advisories/ocert-2011-003.html",
"refsource": "MISC",
"tags": [],
"url": "http://www.ocert.org/advisories/ocert-2011-003.html"
},
{
"name": "https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py",
"refsource": "MISC",
"tags": [],
"url": "https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py"
},
{
"name": "SSRT100728",
"refsource": "HP",
"tags": [],
"url": "http://marc.info/?l=bugtraq\u0026m=132871655717248\u0026w=2"
},
{
"name": "DSA-2401",
"refsource": "DEBIAN",
"tags": [],
"url": "http://www.debian.org/security/2012/dsa-2401"
},
{
"name": "48791",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/48791"
},
{
"name": "48790",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/48790"
},
{
"name": "HPSBUX02860",
"refsource": "HP",
"tags": [],
"url": "http://marc.info/?l=bugtraq\u0026m=136485229118404\u0026w=2"
},
{
"name": "54971",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/54971"
},
{
"name": "55115",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/55115"
},
{
"name": "RHSA-2012:0089",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0089.html"
},
{
"name": "RHSA-2012:0406",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0406.html"
},
{
"name": "RHSA-2012:0074",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0074.html"
},
{
"name": "RHSA-2012:0075",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0075.html"
},
{
"name": "RHSA-2012:0325",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0325.html"
},
{
"name": "RHSA-2012:0076",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0076.html"
},
{
"name": "RHSA-2012:0078",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0078.html"
},
{
"name": "RHSA-2012:0077",
"refsource": "REDHAT",
"tags": [],
"url": "http://rhn.redhat.com/errata/RHSA-2012-0077.html"
},
{
"name": "51200",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/51200"
},
{
"name": "oval:org.mitre.oval:def:18886",
"refsource": "OVAL",
"tags": [],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18886"
},
{
"name": "48549",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/48549"
},
{
"name": "SSRT100771",
"refsource": "HP",
"tags": [],
"url": "http://marc.info/?l=bugtraq\u0026m=133294394108746\u0026w=2"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2018-01-09T02:29Z",
"publishedDate": "2012-01-05T19:55Z"
}
}
}
RHSA-2012:0041
Vulnerability from csaf_redhat - Published: 2012-01-19 17:21 - Updated: 2026-01-28 22:34Summary
Red Hat Security Advisory: jbossweb security update
Severity
Moderate
Notes
Topic: An update for JBoss Enterprise Application Platform 4.3.0 CP10 that fixes
multiple security issues is now available from the Red Hat Customer Portal.
The Red Hat Security Response Team has rated this update as having moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.
Details: JBoss Web Server is the web container, based on Apache Tomcat, in JBoss
Enterprise Application Platform. It provides a single deployment platform
for the JavaServer Pages (JSP) and Java Servlet technologies.
Multiple flaws were found in the way JBoss Web Server handled HTTP DIGEST
authentication. These flaws weakened the JBoss Web Server HTTP DIGEST
authentication implementation, subjecting it to some of the weaknesses of
HTTP BASIC authentication, for example, allowing remote attackers to
perform session replay attacks. (CVE-2011-1184, CVE-2011-5062,
CVE-2011-5063, CVE-2011-5064)
It was found that the Java hashCode() method implementation was susceptible
to predictable hash collisions. A remote attacker could use this flaw to
cause JBoss Web Server to use an excessive amount of CPU time by sending an
HTTP request with a large number of parameters whose names map to the same
hash value. This update introduces a limit on the number of parameters and
headers processed per request to mitigate this issue. The default limit is
512 for parameters and 128 for headers. These defaults can be changed by
setting the org.apache.tomcat.util.http.Parameters.MAX_COUNT and
org.apache.tomcat.util.http.MimeHeaders.MAX_COUNT system properties in
"jboss-as/server/[PROFILE]/deploy/properties-service.xml". (CVE-2011-4858)
A flaw was found in the way JBoss Web Server handled sendfile request
attributes when using the HTTP APR (Apache Portable Runtime) or NIO
(Non-Blocking I/O) connector. A malicious web application running on a
JBoss Web Server instance could use this flaw to bypass security manager
restrictions and gain access to files it would otherwise be unable to
access, or possibly terminate the Java Virtual Machine (JVM).
(CVE-2011-2526)
Red Hat would like to thank oCERT for reporting CVE-2011-4858, and the
Apache Tomcat project for reporting CVE-2011-2526. oCERT acknowledges
Julian Wälde and Alexander Klink as the original reporters of
CVE-2011-4858.
Warning: Before applying this update, back up your JBoss Enterprise
Application Platform's "jboss-as/server/[PROFILE]/deploy/" directory, along
with all other customized configuration files.
All users of JBoss Enterprise Application Platform 4.3.0 CP10 as provided
from the Red Hat Customer Portal are advised to install this update.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not have the expected countermeasures against replay attacks, which makes it easier for remote attackers to bypass intended access restrictions by sniffing the network for valid requests, related to lack of checking of nonce (aka server nonce) and nc (aka nonce-count or client nonce count) values.
4.3 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 4.3
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:4.3
|
— |
Vendor Fix
fix
|
Threats
Impact
Moderate
Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allows local users to bypass intended file access restrictions or cause a denial of service (infinite loop or JVM crash) by leveraging an untrusted web application.
2.6 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 4.3
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:4.3
|
— |
Vendor Fix
fix
|
Threats
Impact
Low
Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
5.0 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 4.3
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:4.3
|
— |
Vendor Fix
fix
|
Threats
Impact
Moderate
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check qop values, which might allow remote attackers to bypass intended integrity-protection requirements via a qop=auth value, a different vulnerability than CVE-2011-1184.
4.3 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 4.3
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:4.3
|
— |
Vendor Fix
fix
|
Threats
Impact
Moderate
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check realm values, which might allow remote attackers to bypass intended access restrictions by leveraging the availability of a protection space with weaker authentication or authorization requirements, a different vulnerability than CVE-2011-1184.
4.3 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 4.3
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:4.3
|
— |
Vendor Fix
fix
|
Threats
Impact
Moderate
DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret (aka private key), which makes it easier for remote attackers to bypass cryptographic protection mechanisms by leveraging knowledge of this string, a different vulnerability than CVE-2011-1184.
4.3 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 4.3
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:4.3
|
— |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
28 references
Acknowledgments
Apache Tomcat project
oCERT
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for JBoss Enterprise Application Platform 4.3.0 CP10 that fixes\nmultiple security issues is now available from the Red Hat Customer Portal.\n\nThe Red Hat Security Response Team has rated this update as having moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base scores,\nwhich give detailed severity ratings, are available for each vulnerability\nfrom the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "JBoss Web Server is the web container, based on Apache Tomcat, in JBoss\nEnterprise Application Platform. It provides a single deployment platform\nfor the JavaServer Pages (JSP) and Java Servlet technologies.\n\nMultiple flaws were found in the way JBoss Web Server handled HTTP DIGEST\nauthentication. These flaws weakened the JBoss Web Server HTTP DIGEST\nauthentication implementation, subjecting it to some of the weaknesses of\nHTTP BASIC authentication, for example, allowing remote attackers to\nperform session replay attacks. (CVE-2011-1184, CVE-2011-5062,\nCVE-2011-5063, CVE-2011-5064)\n\nIt was found that the Java hashCode() method implementation was susceptible\nto predictable hash collisions. A remote attacker could use this flaw to\ncause JBoss Web Server to use an excessive amount of CPU time by sending an\nHTTP request with a large number of parameters whose names map to the same\nhash value. This update introduces a limit on the number of parameters and\nheaders processed per request to mitigate this issue. The default limit is\n512 for parameters and 128 for headers. These defaults can be changed by\nsetting the org.apache.tomcat.util.http.Parameters.MAX_COUNT and\norg.apache.tomcat.util.http.MimeHeaders.MAX_COUNT system properties in\n\"jboss-as/server/[PROFILE]/deploy/properties-service.xml\". (CVE-2011-4858)\n\nA flaw was found in the way JBoss Web Server handled sendfile request\nattributes when using the HTTP APR (Apache Portable Runtime) or NIO\n(Non-Blocking I/O) connector. A malicious web application running on a\nJBoss Web Server instance could use this flaw to bypass security manager\nrestrictions and gain access to files it would otherwise be unable to\naccess, or possibly terminate the Java Virtual Machine (JVM).\n(CVE-2011-2526)\n\nRed Hat would like to thank oCERT for reporting CVE-2011-4858, and the\nApache Tomcat project for reporting CVE-2011-2526. oCERT acknowledges\nJulian W\u00e4lde and Alexander Klink as the original reporters of\nCVE-2011-4858.\n\nWarning: Before applying this update, back up your JBoss Enterprise\nApplication Platform\u0027s \"jboss-as/server/[PROFILE]/deploy/\" directory, along\nwith all other customized configuration files.\n\nAll users of JBoss Enterprise Application Platform 4.3.0 CP10 as provided\nfrom the Red Hat Customer Portal are advised to install this update.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2012:0041",
"url": "https://access.redhat.com/errata/RHSA-2012:0041"
},
{
"category": "external",
"summary": "720948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=720948"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=appplatform\u0026downloadType=securityPatches\u0026version=4.3.0.GA_CP10",
"url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=appplatform\u0026downloadType=securityPatches\u0026version=4.3.0.GA_CP10"
},
{
"category": "external",
"summary": "741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "750521",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750521"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2012/rhsa-2012_0041.json"
}
],
"title": "Red Hat Security Advisory: jbossweb security update",
"tracking": {
"current_release_date": "2026-01-28T22:34:21+00:00",
"generator": {
"date": "2026-01-28T22:34:21+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.16"
}
},
"id": "RHSA-2012:0041",
"initial_release_date": "2012-01-19T17:21:00+00:00",
"revision_history": [
{
"date": "2012-01-19T17:21:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-02-20T12:42:37+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-01-28T22:34:21+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Enterprise Application Platform 4.3",
"product": {
"name": "Red Hat JBoss Enterprise Application Platform 4.3",
"product_id": "Red Hat JBoss Enterprise Application Platform 4.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:4.3"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Enterprise Application Platform"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-1184",
"discovery_date": "2011-09-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "741401"
}
],
"notes": [
{
"category": "description",
"text": "The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not have the expected countermeasures against replay attacks, which makes it easier for remote attackers to bypass intended access restrictions by sniffing the network for valid requests, related to lack of checking of nonce (aka server nonce) and nc (aka nonce-count or client nonce count) values.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: Multiple weaknesses in HTTP DIGEST authentication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 4.3"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-1184"
},
{
"category": "external",
"summary": "RHBZ#741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-1184",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1184"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1184",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1184"
}
],
"release_date": "2011-09-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-19T17:21:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update). Before applying the update, back up your\nexisting JBoss Enterprise Application Platform installation (including all\napplications and configuration files).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 4.3"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0041"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 4.3"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: Multiple weaknesses in HTTP DIGEST authentication"
},
{
"acknowledgments": [
{
"names": [
"Apache Tomcat project"
]
}
],
"cve": "CVE-2011-2526",
"discovery_date": "2011-07-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "720948"
}
],
"notes": [
{
"category": "description",
"text": "Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allows local users to bypass intended file access restrictions or cause a denial of service (infinite loop or JVM crash) by leveraging an untrusted web application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: security manager restrictions bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Security Response Team has rated this issue as having low security\nimpact, a future update may address this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 4.3"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-2526"
},
{
"category": "external",
"summary": "RHBZ#720948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=720948"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-2526",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2526"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2526",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2526"
}
],
"release_date": "2011-07-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-19T17:21:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update). Before applying the update, back up your\nexisting JBoss Enterprise Application Platform installation (including all\napplications and configuration files).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 4.3"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0041"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:H/Au:N/C:P/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 4.3"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "tomcat: security manager restrictions bypass"
},
{
"acknowledgments": [
{
"names": [
"oCERT"
]
}
],
"cve": "CVE-2011-4858",
"discovery_date": "2011-11-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "750521"
}
],
"notes": [
{
"category": "description",
"text": "Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: hash table collisions CPU usage DoS (oCERT-2011-003)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 4.3"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-4858"
},
{
"category": "external",
"summary": "RHBZ#750521",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750521"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-4858",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4858"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4858",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4858"
}
],
"release_date": "2011-12-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-19T17:21:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update). Before applying the update, back up your\nexisting JBoss Enterprise Application Platform installation (including all\napplications and configuration files).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 4.3"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0041"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 4.3"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: hash table collisions CPU usage DoS (oCERT-2011-003)"
},
{
"cve": "CVE-2011-5062",
"discovery_date": "2011-09-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "741401"
}
],
"notes": [
{
"category": "description",
"text": "The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check qop values, which might allow remote attackers to bypass intended integrity-protection requirements via a qop=auth value, a different vulnerability than CVE-2011-1184.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: Multiple weaknesses in HTTP DIGEST authentication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 4.3"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-5062"
},
{
"category": "external",
"summary": "RHBZ#741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-5062",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5062"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-5062",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-5062"
}
],
"release_date": "2011-09-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-19T17:21:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update). Before applying the update, back up your\nexisting JBoss Enterprise Application Platform installation (including all\napplications and configuration files).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 4.3"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0041"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 4.3"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: Multiple weaknesses in HTTP DIGEST authentication"
},
{
"cve": "CVE-2011-5063",
"discovery_date": "2011-09-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "741401"
}
],
"notes": [
{
"category": "description",
"text": "The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check realm values, which might allow remote attackers to bypass intended access restrictions by leveraging the availability of a protection space with weaker authentication or authorization requirements, a different vulnerability than CVE-2011-1184.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: Multiple weaknesses in HTTP DIGEST authentication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 4.3"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-5063"
},
{
"category": "external",
"summary": "RHBZ#741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-5063",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5063"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-5063",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-5063"
}
],
"release_date": "2011-09-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-19T17:21:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update). Before applying the update, back up your\nexisting JBoss Enterprise Application Platform installation (including all\napplications and configuration files).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 4.3"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0041"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 4.3"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: Multiple weaknesses in HTTP DIGEST authentication"
},
{
"cve": "CVE-2011-5064",
"discovery_date": "2011-09-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "741401"
}
],
"notes": [
{
"category": "description",
"text": "DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret (aka private key), which makes it easier for remote attackers to bypass cryptographic protection mechanisms by leveraging knowledge of this string, a different vulnerability than CVE-2011-1184.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: Multiple weaknesses in HTTP DIGEST authentication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 4.3"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-5064"
},
{
"category": "external",
"summary": "RHBZ#741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-5064",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5064"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-5064",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-5064"
}
],
"release_date": "2011-09-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-19T17:21:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update). Before applying the update, back up your\nexisting JBoss Enterprise Application Platform installation (including all\napplications and configuration files).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 4.3"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0041"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 4.3"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: Multiple weaknesses in HTTP DIGEST authentication"
}
]
}
RHSA-2012:0074
Vulnerability from csaf_redhat - Published: 2012-01-31 22:55 - Updated: 2026-01-28 22:34Summary
Red Hat Security Advisory: jbossweb security update
Severity
Important
Notes
Topic: Updated jbossweb packages that fix multiple security issues are now
available for JBoss Enterprise Application Platform 5.1.2 for Red Hat
Enterprise Linux 4, 5, and 6.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details: JBoss Web is the web container, based on Apache Tomcat, in JBoss Enterprise
Application Platform. It provides a single deployment platform for the
JavaServer Pages (JSP) and Java Servlet technologies.
A flaw was found in the way JBoss Web handled UTF-8 surrogate pair
characters. If JBoss Web was hosting an application with UTF-8 character
encoding enabled, or that included user-supplied UTF-8 strings in a
response, a remote attacker could use this flaw to cause a denial of
service (infinite loop) on the JBoss Web server. (CVE-2011-4610)
It was found that the Java hashCode() method implementation was
susceptible to predictable hash collisions. A remote attacker could use
this flaw to cause JBoss Web to use an excessive amount of CPU time by
sending an HTTP request with a large number of parameters whose names map
to the same hash value. This update introduces a limit on the number of
parameters and headers processed per request to mitigate this issue. The
default limit is 512 for parameters and 128 for headers. These defaults
can be changed by setting the
org.apache.tomcat.util.http.Parameters.MAX_COUNT and
org.apache.tomcat.util.http.MimeHeaders.MAX_COUNT system properties in
"jboss-as/server/[PROFILE]/deploy/properties-service.xml". (CVE-2011-4858)
It was found that JBoss Web did not handle large numbers of parameters and
large parameter values efficiently. A remote attacker could make a JBoss
Web server use an excessive amount of CPU time by sending an HTTP request
containing a large number of parameters or large parameter values. This
update introduces limits on the number of parameters and headers processed
per request to address this issue. Refer to the CVE-2011-4858 description
for information about the org.apache.tomcat.util.http.Parameters.MAX_COUNT
and org.apache.tomcat.util.http.MimeHeaders.MAX_COUNT system properties.
(CVE-2012-0022)
Multiple flaws were found in the way JBoss Web handled HTTP DIGEST
authentication. These flaws weakened the JBoss Web HTTP DIGEST
authentication implementation, subjecting it to some of the weaknesses of
HTTP BASIC authentication, for example, allowing remote attackers to
perform session replay attacks. (CVE-2011-1184, CVE-2011-5062,
CVE-2011-5063, CVE-2011-5064)
A flaw was found in the way JBoss Web handled sendfile request attributes
when using the HTTP APR (Apache Portable Runtime) or NIO (Non-Blocking I/O)
connector. A malicious web application running on a JBoss Web instance
could use this flaw to bypass security manager restrictions and gain access
to files it would otherwise be unable to access, or possibly terminate the
Java Virtual Machine (JVM). (CVE-2011-2526)
Red Hat would like to thank NTT OSSC for reporting CVE-2011-4610; oCERT for
reporting CVE-2011-4858; and the Apache Tomcat project for reporting
CVE-2011-2526. oCERT acknowledges Julian Wälde and Alexander Klink as the
original reporters of CVE-2011-4858.
Warning: Before applying this update, back up your JBoss Enterprise
Application Platform's "jboss-as/server/[PROFILE]/deploy/" directory, along
with all other customized configuration files.
Users of JBoss Enterprise Application Platform 5.1.2 on Red Hat Enterprise
Linux 4, 5, and 6 should upgrade to these updated packages, which correct
these issues. The JBoss server process must be restarted for this update to
take effect.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not have the expected countermeasures against replay attacks, which makes it easier for remote attackers to bypass intended access restrictions by sniffing the network for valid requests, related to lack of checking of nonce (aka server nonce) and nc (aka nonce-count or client nonce count) values.
4.3 ()
Affected products
Fixed
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allows local users to bypass intended file access restrictions or cause a denial of service (infinite loop or JVM crash) by leveraging an untrusted web application.
2.6 ()
Affected products
Fixed
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
Threats
Impact
Low
JBoss Web, as used in Red Hat JBoss Communications Platform before 5.1.3, Enterprise Web Platform before 5.1.2, Enterprise Application Platform before 5.1.2, and other products, allows remote attackers to cause a denial of service (infinite loop) via vectors related to a crafted UTF-8 and a "surrogate pair character" that is "at the boundary of an internal buffer."
5.0 ()
Affected products
Fixed
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
Threats
Impact
Important
Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
5.0 ()
Affected products
Fixed
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check qop values, which might allow remote attackers to bypass intended integrity-protection requirements via a qop=auth value, a different vulnerability than CVE-2011-1184.
4.3 ()
Affected products
Fixed
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check realm values, which might allow remote attackers to bypass intended access restrictions by leveraging the availability of a protection space with weaker authentication or authorization requirements, a different vulnerability than CVE-2011-1184.
4.3 ()
Affected products
Fixed
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret (aka private key), which makes it easier for remote attackers to bypass cryptographic protection mechanisms by leveraging knowledge of this string, a different vulnerability than CVE-2011-1184.
4.3 ()
Affected products
Fixed
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consumption) via a request that contains many parameters and parameter values, a different vulnerability than CVE-2011-4858.
5.0 ()
Affected products
Fixed
24 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
37 references
Acknowledgments
Apache Tomcat project
NTT OSSC
oCERT
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated jbossweb packages that fix multiple security issues are now\navailable for JBoss Enterprise Application Platform 5.1.2 for Red Hat\nEnterprise Linux 4, 5, and 6.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "JBoss Web is the web container, based on Apache Tomcat, in JBoss Enterprise\nApplication Platform. It provides a single deployment platform for the\nJavaServer Pages (JSP) and Java Servlet technologies.\n\nA flaw was found in the way JBoss Web handled UTF-8 surrogate pair\ncharacters. If JBoss Web was hosting an application with UTF-8 character\nencoding enabled, or that included user-supplied UTF-8 strings in a\nresponse, a remote attacker could use this flaw to cause a denial of\nservice (infinite loop) on the JBoss Web server. (CVE-2011-4610)\n\nIt was found that the Java hashCode() method implementation was\nsusceptible to predictable hash collisions. A remote attacker could use\nthis flaw to cause JBoss Web to use an excessive amount of CPU time by\nsending an HTTP request with a large number of parameters whose names map\nto the same hash value. This update introduces a limit on the number of\nparameters and headers processed per request to mitigate this issue. The\ndefault limit is 512 for parameters and 128 for headers. These defaults\ncan be changed by setting the\norg.apache.tomcat.util.http.Parameters.MAX_COUNT and\norg.apache.tomcat.util.http.MimeHeaders.MAX_COUNT system properties in\n\"jboss-as/server/[PROFILE]/deploy/properties-service.xml\". (CVE-2011-4858)\n\nIt was found that JBoss Web did not handle large numbers of parameters and\nlarge parameter values efficiently. A remote attacker could make a JBoss\nWeb server use an excessive amount of CPU time by sending an HTTP request\ncontaining a large number of parameters or large parameter values. This\nupdate introduces limits on the number of parameters and headers processed\nper request to address this issue. Refer to the CVE-2011-4858 description\nfor information about the org.apache.tomcat.util.http.Parameters.MAX_COUNT\nand org.apache.tomcat.util.http.MimeHeaders.MAX_COUNT system properties.\n(CVE-2012-0022)\n\nMultiple flaws were found in the way JBoss Web handled HTTP DIGEST\nauthentication. These flaws weakened the JBoss Web HTTP DIGEST\nauthentication implementation, subjecting it to some of the weaknesses of\nHTTP BASIC authentication, for example, allowing remote attackers to\nperform session replay attacks. (CVE-2011-1184, CVE-2011-5062,\nCVE-2011-5063, CVE-2011-5064)\n\nA flaw was found in the way JBoss Web handled sendfile request attributes\nwhen using the HTTP APR (Apache Portable Runtime) or NIO (Non-Blocking I/O)\nconnector. A malicious web application running on a JBoss Web instance\ncould use this flaw to bypass security manager restrictions and gain access\nto files it would otherwise be unable to access, or possibly terminate the\nJava Virtual Machine (JVM). (CVE-2011-2526)\n\nRed Hat would like to thank NTT OSSC for reporting CVE-2011-4610; oCERT for\nreporting CVE-2011-4858; and the Apache Tomcat project for reporting\nCVE-2011-2526. oCERT acknowledges Julian W\u00e4lde and Alexander Klink as the\noriginal reporters of CVE-2011-4858.\n\nWarning: Before applying this update, back up your JBoss Enterprise\nApplication Platform\u0027s \"jboss-as/server/[PROFILE]/deploy/\" directory, along\nwith all other customized configuration files.\n\nUsers of JBoss Enterprise Application Platform 5.1.2 on Red Hat Enterprise\nLinux 4, 5, and 6 should upgrade to these updated packages, which correct\nthese issues. The JBoss server process must be restarted for this update to\ntake effect.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2012:0074",
"url": "https://access.redhat.com/errata/RHSA-2012:0074"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "720948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=720948"
},
{
"category": "external",
"summary": "741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "750521",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750521"
},
{
"category": "external",
"summary": "767871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=767871"
},
{
"category": "external",
"summary": "783359",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=783359"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2012/rhsa-2012_0074.json"
}
],
"title": "Red Hat Security Advisory: jbossweb security update",
"tracking": {
"current_release_date": "2026-01-28T22:34:22+00:00",
"generator": {
"date": "2026-01-28T22:34:22+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.16"
}
},
"id": "RHSA-2012:0074",
"initial_release_date": "2012-01-31T22:55:00+00:00",
"revision_history": [
{
"date": "2012-01-31T22:55:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2012-01-31T23:03:17+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-01-28T22:34:22+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Enterprise Application Platform 5 for RHEL 6 Server",
"product": {
"name": "Red Hat JBoss Enterprise Application Platform 5 for RHEL 6 Server",
"product_id": "6Server-JBEAP-5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:5::el6"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 AS",
"product": {
"name": "Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 AS",
"product_id": "4AS-JBEAP-5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:5::el4"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 ES",
"product": {
"name": "Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 ES",
"product_id": "4ES-JBEAP-5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:5::el4"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss Enterprise Application Platform 5 for RHEL 5 Server",
"product": {
"name": "Red Hat JBoss Enterprise Application Platform 5 for RHEL 5 Server",
"product_id": "5Server-JBEAP-5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:5::el5"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Enterprise Application Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product": {
"name": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product_id": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb-el-1.0-api@2.1.12-3_patch_03.2.ep5.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product": {
"name": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product_id": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb-servlet-2.5-api@2.1.12-3_patch_03.2.ep5.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product": {
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product_id": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb@2.1.12-3_patch_03.2.ep5.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product": {
"name": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product_id": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb-jsp-2.1-api@2.1.12-3_patch_03.2.ep5.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product": {
"name": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product_id": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb-lib@2.1.12-3_patch_03.2.ep5.el6?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product": {
"name": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product_id": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb-lib@2.1.12-3_patch_03.2.ep5.el4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product": {
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product_id": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb@2.1.12-3_patch_03.2.ep5.el4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product": {
"name": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product_id": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb-el-1.0-api@2.1.12-3_patch_03.2.ep5.el4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product": {
"name": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product_id": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb-servlet-2.5-api@2.1.12-3_patch_03.2.ep5.el4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product": {
"name": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product_id": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb-jsp-2.1-api@2.1.12-3_patch_03.2.ep5.el4?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product": {
"name": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product_id": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb-lib@2.1.12-3_patch_03.2.ep5.el5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product": {
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product_id": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb@2.1.12-3_patch_03.2.ep5.el5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product": {
"name": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product_id": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb-el-1.0-api@2.1.12-3_patch_03.2.ep5.el5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product": {
"name": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product_id": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb-servlet-2.5-api@2.1.12-3_patch_03.2.ep5.el5?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product": {
"name": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product_id": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb-jsp-2.1-api@2.1.12-3_patch_03.2.ep5.el5?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"product": {
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"product_id": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb@2.1.12-3_patch_03.2.ep5.el6?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"product": {
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"product_id": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb@2.1.12-3_patch_03.2.ep5.el4?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"product": {
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"product_id": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbossweb@2.1.12-3_patch_03.2.ep5.el5?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 AS",
"product_id": "4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch"
},
"product_reference": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"relates_to_product_reference": "4AS-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 AS",
"product_id": "4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src"
},
"product_reference": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"relates_to_product_reference": "4AS-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 AS",
"product_id": "4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch"
},
"product_reference": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"relates_to_product_reference": "4AS-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 AS",
"product_id": "4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch"
},
"product_reference": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"relates_to_product_reference": "4AS-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 AS",
"product_id": "4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch"
},
"product_reference": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"relates_to_product_reference": "4AS-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 AS",
"product_id": "4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch"
},
"product_reference": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"relates_to_product_reference": "4AS-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 ES",
"product_id": "4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch"
},
"product_reference": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"relates_to_product_reference": "4ES-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 ES",
"product_id": "4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src"
},
"product_reference": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"relates_to_product_reference": "4ES-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 ES",
"product_id": "4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch"
},
"product_reference": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"relates_to_product_reference": "4ES-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 ES",
"product_id": "4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch"
},
"product_reference": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"relates_to_product_reference": "4ES-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 ES",
"product_id": "4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch"
},
"product_reference": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"relates_to_product_reference": "4ES-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 4 ES",
"product_id": "4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch"
},
"product_reference": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"relates_to_product_reference": "4ES-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 5 Server",
"product_id": "5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch"
},
"product_reference": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"relates_to_product_reference": "5Server-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 5 Server",
"product_id": "5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src"
},
"product_reference": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"relates_to_product_reference": "5Server-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 5 Server",
"product_id": "5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch"
},
"product_reference": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"relates_to_product_reference": "5Server-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 5 Server",
"product_id": "5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch"
},
"product_reference": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"relates_to_product_reference": "5Server-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 5 Server",
"product_id": "5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch"
},
"product_reference": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"relates_to_product_reference": "5Server-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 5 Server",
"product_id": "5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch"
},
"product_reference": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"relates_to_product_reference": "5Server-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 6 Server",
"product_id": "6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
},
"product_reference": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"relates_to_product_reference": "6Server-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 6 Server",
"product_id": "6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src"
},
"product_reference": "jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"relates_to_product_reference": "6Server-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 6 Server",
"product_id": "6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
},
"product_reference": "jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"relates_to_product_reference": "6Server-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 6 Server",
"product_id": "6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
},
"product_reference": "jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"relates_to_product_reference": "6Server-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 6 Server",
"product_id": "6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
},
"product_reference": "jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"relates_to_product_reference": "6Server-JBEAP-5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch as a component of Red Hat JBoss Enterprise Application Platform 5 for RHEL 6 Server",
"product_id": "6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
},
"product_reference": "jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"relates_to_product_reference": "6Server-JBEAP-5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-1184",
"discovery_date": "2011-09-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "741401"
}
],
"notes": [
{
"category": "description",
"text": "The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not have the expected countermeasures against replay attacks, which makes it easier for remote attackers to bypass intended access restrictions by sniffing the network for valid requests, related to lack of checking of nonce (aka server nonce) and nc (aka nonce-count or client nonce count) values.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: Multiple weaknesses in HTTP DIGEST authentication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-1184"
},
{
"category": "external",
"summary": "RHBZ#741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-1184",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1184"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1184",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1184"
}
],
"release_date": "2011-09-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0074"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: Multiple weaknesses in HTTP DIGEST authentication"
},
{
"acknowledgments": [
{
"names": [
"Apache Tomcat project"
]
}
],
"cve": "CVE-2011-2526",
"discovery_date": "2011-07-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "720948"
}
],
"notes": [
{
"category": "description",
"text": "Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allows local users to bypass intended file access restrictions or cause a denial of service (infinite loop or JVM crash) by leveraging an untrusted web application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: security manager restrictions bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Security Response Team has rated this issue as having low security\nimpact, a future update may address this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-2526"
},
{
"category": "external",
"summary": "RHBZ#720948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=720948"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-2526",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2526"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2526",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2526"
}
],
"release_date": "2011-07-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0074"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:H/Au:N/C:P/I:N/A:P",
"version": "2.0"
},
"products": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "tomcat: security manager restrictions bypass"
},
{
"acknowledgments": [
{
"names": [
"NTT OSSC"
]
}
],
"cve": "CVE-2011-4610",
"discovery_date": "2011-12-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "767871"
}
],
"notes": [
{
"category": "description",
"text": "JBoss Web, as used in Red Hat JBoss Communications Platform before 5.1.3, Enterprise Web Platform before 5.1.2, Enterprise Application Platform before 5.1.2, and other products, allows remote attackers to cause a denial of service (infinite loop) via vectors related to a crafted UTF-8 and a \"surrogate pair character\" that is \"at the boundary of an internal buffer.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JBoss Web remote denial of service when surrogate pair character is placed at buffer boundary",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-4610"
},
{
"category": "external",
"summary": "RHBZ#767871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=767871"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-4610",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4610"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4610",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4610"
}
],
"release_date": "2012-01-31T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0074"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JBoss Web remote denial of service when surrogate pair character is placed at buffer boundary"
},
{
"acknowledgments": [
{
"names": [
"oCERT"
]
}
],
"cve": "CVE-2011-4858",
"discovery_date": "2011-11-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "750521"
}
],
"notes": [
{
"category": "description",
"text": "Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: hash table collisions CPU usage DoS (oCERT-2011-003)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-4858"
},
{
"category": "external",
"summary": "RHBZ#750521",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750521"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-4858",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4858"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4858",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4858"
}
],
"release_date": "2011-12-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0074"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: hash table collisions CPU usage DoS (oCERT-2011-003)"
},
{
"cve": "CVE-2011-5062",
"discovery_date": "2011-09-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "741401"
}
],
"notes": [
{
"category": "description",
"text": "The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check qop values, which might allow remote attackers to bypass intended integrity-protection requirements via a qop=auth value, a different vulnerability than CVE-2011-1184.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: Multiple weaknesses in HTTP DIGEST authentication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-5062"
},
{
"category": "external",
"summary": "RHBZ#741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-5062",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5062"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-5062",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-5062"
}
],
"release_date": "2011-09-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0074"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: Multiple weaknesses in HTTP DIGEST authentication"
},
{
"cve": "CVE-2011-5063",
"discovery_date": "2011-09-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "741401"
}
],
"notes": [
{
"category": "description",
"text": "The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check realm values, which might allow remote attackers to bypass intended access restrictions by leveraging the availability of a protection space with weaker authentication or authorization requirements, a different vulnerability than CVE-2011-1184.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: Multiple weaknesses in HTTP DIGEST authentication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-5063"
},
{
"category": "external",
"summary": "RHBZ#741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-5063",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5063"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-5063",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-5063"
}
],
"release_date": "2011-09-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0074"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: Multiple weaknesses in HTTP DIGEST authentication"
},
{
"cve": "CVE-2011-5064",
"discovery_date": "2011-09-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "741401"
}
],
"notes": [
{
"category": "description",
"text": "DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret (aka private key), which makes it easier for remote attackers to bypass cryptographic protection mechanisms by leveraging knowledge of this string, a different vulnerability than CVE-2011-1184.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: Multiple weaknesses in HTTP DIGEST authentication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-5064"
},
{
"category": "external",
"summary": "RHBZ#741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-5064",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5064"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-5064",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-5064"
}
],
"release_date": "2011-09-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0074"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: Multiple weaknesses in HTTP DIGEST authentication"
},
{
"cve": "CVE-2012-0022",
"discovery_date": "2012-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "783359"
}
],
"notes": [
{
"category": "description",
"text": "Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consumption) via a request that contains many parameters and parameter values, a different vulnerability than CVE-2011-4858.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: large number of parameters DoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-0022"
},
{
"category": "external",
"summary": "RHBZ#783359",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=783359"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-0022",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0022"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0022",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0022"
}
],
"release_date": "2012-01-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "Before applying this update, make sure all previously-released errata\nrelevant to your system have been applied.\n\nThis update is available via the Red Hat Network. Details on how to\nuse the Red Hat Network to apply this update are available at\nhttps://access.redhat.com/kb/docs/DOC-11259",
"product_ids": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0074"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4AS-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4AS-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el4.src",
"4ES-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"4ES-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el4.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el5.src",
"5Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"5Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el5.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-0:2.1.12-3_patch_03.2.ep5.el6.src",
"6Server-JBEAP-5:jbossweb-el-1.0-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-jsp-2.1-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-lib-0:2.1.12-3_patch_03.2.ep5.el6.noarch",
"6Server-JBEAP-5:jbossweb-servlet-2.5-api-0:2.1.12-3_patch_03.2.ep5.el6.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: large number of parameters DoS"
}
]
}
RHSA-2012:0075
Vulnerability from csaf_redhat - Published: 2012-01-31 22:55 - Updated: 2026-01-28 22:34Summary
Red Hat Security Advisory: jbossweb security update
Severity
Important
Notes
Topic: An update for JBoss Enterprise Application Platform 5.1.2 that fixes
multiple security issues is now available from the Red Hat Customer Portal.
The Red Hat Security Response Team has rated this update as having
important security impact. Common Vulnerability Scoring System (CVSS) base
scores, which give detailed severity ratings, are available for each
vulnerability from the CVE links in the References section.
Details: JBoss Web is the web container, based on Apache Tomcat, in JBoss Enterprise
Application Platform. It provides a single deployment platform for the
JavaServer Pages (JSP) and Java Servlet technologies.
A flaw was found in the way JBoss Web handled UTF-8 surrogate pair
characters. If JBoss Web was hosting an application with UTF-8 character
encoding enabled, or that included user-supplied UTF-8 strings in a
response, a remote attacker could use this flaw to cause a denial of
service (infinite loop) on the JBoss Web server. (CVE-2011-4610)
It was found that the Java hashCode() method implementation was
susceptible to predictable hash collisions. A remote attacker could use
this flaw to cause JBoss Web to use an excessive amount of CPU time by
sending an HTTP request with a large number of parameters whose names map
to the same hash value. This update introduces a limit on the number of
parameters and headers processed per request to mitigate this issue. The
default limit is 512 for parameters and 128 for headers. These defaults
can be changed by setting the
org.apache.tomcat.util.http.Parameters.MAX_COUNT and
org.apache.tomcat.util.http.MimeHeaders.MAX_COUNT system properties in
"jboss-as/server/[PROFILE]/deploy/properties-service.xml". (CVE-2011-4858)
It was found that JBoss Web did not handle large numbers of parameters and
large parameter values efficiently. A remote attacker could make a JBoss
Web server use an excessive amount of CPU time by sending an HTTP request
containing a large number of parameters or large parameter values. This
update introduces limits on the number of parameters and headers processed
per request to address this issue. Refer to the CVE-2011-4858 description
for information about the org.apache.tomcat.util.http.Parameters.MAX_COUNT
and org.apache.tomcat.util.http.MimeHeaders.MAX_COUNT system properties.
(CVE-2012-0022)
Multiple flaws were found in the way JBoss Web handled HTTP DIGEST
authentication. These flaws weakened the JBoss Web HTTP DIGEST
authentication implementation, subjecting it to some of the weaknesses of
HTTP BASIC authentication, for example, allowing remote attackers to
perform session replay attacks. (CVE-2011-1184, CVE-2011-5062,
CVE-2011-5063, CVE-2011-5064)
A flaw was found in the way JBoss Web handled sendfile request attributes
when using the HTTP APR (Apache Portable Runtime) or NIO (Non-Blocking I/O)
connector. A malicious web application running on a JBoss Web instance
could use this flaw to bypass security manager restrictions and gain access
to files it would otherwise be unable to access, or possibly terminate the
Java Virtual Machine (JVM). (CVE-2011-2526)
Red Hat would like to thank NTT OSSC for reporting CVE-2011-4610; oCERT for
reporting CVE-2011-4858; and the Apache Tomcat project for reporting
CVE-2011-2526. oCERT acknowledges Julian Wälde and Alexander Klink as the
original reporters of CVE-2011-4858.
Warning: Before applying this update, back up your JBoss Enterprise
Application Platform's "jboss-as/server/[PROFILE]/deploy/" directory, along
with all other customized configuration files.
All users of JBoss Enterprise Application Platform 5.1.2 as provided from
the Red Hat Customer Portal are advised to install this update.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not have the expected countermeasures against replay attacks, which makes it easier for remote attackers to bypass intended access restrictions by sniffing the network for valid requests, related to lack of checking of nonce (aka server nonce) and nc (aka nonce-count or client nonce count) values.
4.3 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 5.1
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:5.1
|
— |
Vendor Fix
fix
|
Threats
Impact
Moderate
Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allows local users to bypass intended file access restrictions or cause a denial of service (infinite loop or JVM crash) by leveraging an untrusted web application.
2.6 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 5.1
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:5.1
|
— |
Vendor Fix
fix
|
Threats
Impact
Low
JBoss Web, as used in Red Hat JBoss Communications Platform before 5.1.3, Enterprise Web Platform before 5.1.2, Enterprise Application Platform before 5.1.2, and other products, allows remote attackers to cause a denial of service (infinite loop) via vectors related to a crafted UTF-8 and a "surrogate pair character" that is "at the boundary of an internal buffer."
5.0 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 5.1
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:5.1
|
— |
Vendor Fix
fix
|
Threats
Impact
Important
Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
5.0 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 5.1
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:5.1
|
— |
Vendor Fix
fix
|
Threats
Impact
Moderate
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check qop values, which might allow remote attackers to bypass intended integrity-protection requirements via a qop=auth value, a different vulnerability than CVE-2011-1184.
4.3 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 5.1
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:5.1
|
— |
Vendor Fix
fix
|
Threats
Impact
Moderate
The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check realm values, which might allow remote attackers to bypass intended access restrictions by leveraging the availability of a protection space with weaker authentication or authorization requirements, a different vulnerability than CVE-2011-1184.
4.3 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 5.1
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:5.1
|
— |
Vendor Fix
fix
|
Threats
Impact
Moderate
DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret (aka private key), which makes it easier for remote attackers to bypass cryptographic protection mechanisms by leveraging knowledge of this string, a different vulnerability than CVE-2011-1184.
4.3 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 5.1
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:5.1
|
— |
Vendor Fix
fix
|
Threats
Impact
Moderate
Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consumption) via a request that contains many parameters and parameter values, a different vulnerability than CVE-2011-4858.
5.0 ()
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Enterprise Application Platform 5.1
Red Hat / Red Hat JBoss Enterprise Application Platform
|
cpe:/a:redhat:jboss_enterprise_application_platform:5.1
|
— |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
38 references
Acknowledgments
Apache Tomcat project
NTT OSSC
oCERT
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for JBoss Enterprise Application Platform 5.1.2 that fixes\nmultiple security issues is now available from the Red Hat Customer Portal.\n\nThe Red Hat Security Response Team has rated this update as having\nimportant security impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "JBoss Web is the web container, based on Apache Tomcat, in JBoss Enterprise\nApplication Platform. It provides a single deployment platform for the\nJavaServer Pages (JSP) and Java Servlet technologies.\n\nA flaw was found in the way JBoss Web handled UTF-8 surrogate pair\ncharacters. If JBoss Web was hosting an application with UTF-8 character\nencoding enabled, or that included user-supplied UTF-8 strings in a\nresponse, a remote attacker could use this flaw to cause a denial of\nservice (infinite loop) on the JBoss Web server. (CVE-2011-4610)\n\nIt was found that the Java hashCode() method implementation was\nsusceptible to predictable hash collisions. A remote attacker could use\nthis flaw to cause JBoss Web to use an excessive amount of CPU time by\nsending an HTTP request with a large number of parameters whose names map\nto the same hash value. This update introduces a limit on the number of\nparameters and headers processed per request to mitigate this issue. The\ndefault limit is 512 for parameters and 128 for headers. These defaults\ncan be changed by setting the\norg.apache.tomcat.util.http.Parameters.MAX_COUNT and\norg.apache.tomcat.util.http.MimeHeaders.MAX_COUNT system properties in\n\"jboss-as/server/[PROFILE]/deploy/properties-service.xml\". (CVE-2011-4858)\n\nIt was found that JBoss Web did not handle large numbers of parameters and\nlarge parameter values efficiently. A remote attacker could make a JBoss\nWeb server use an excessive amount of CPU time by sending an HTTP request\ncontaining a large number of parameters or large parameter values. This\nupdate introduces limits on the number of parameters and headers processed\nper request to address this issue. Refer to the CVE-2011-4858 description\nfor information about the org.apache.tomcat.util.http.Parameters.MAX_COUNT\nand org.apache.tomcat.util.http.MimeHeaders.MAX_COUNT system properties.\n(CVE-2012-0022)\n\nMultiple flaws were found in the way JBoss Web handled HTTP DIGEST\nauthentication. These flaws weakened the JBoss Web HTTP DIGEST\nauthentication implementation, subjecting it to some of the weaknesses of\nHTTP BASIC authentication, for example, allowing remote attackers to\nperform session replay attacks. (CVE-2011-1184, CVE-2011-5062,\nCVE-2011-5063, CVE-2011-5064)\n\nA flaw was found in the way JBoss Web handled sendfile request attributes\nwhen using the HTTP APR (Apache Portable Runtime) or NIO (Non-Blocking I/O)\nconnector. A malicious web application running on a JBoss Web instance\ncould use this flaw to bypass security manager restrictions and gain access\nto files it would otherwise be unable to access, or possibly terminate the\nJava Virtual Machine (JVM). (CVE-2011-2526)\n\nRed Hat would like to thank NTT OSSC for reporting CVE-2011-4610; oCERT for\nreporting CVE-2011-4858; and the Apache Tomcat project for reporting\nCVE-2011-2526. oCERT acknowledges Julian W\u00e4lde and Alexander Klink as the\noriginal reporters of CVE-2011-4858.\n\nWarning: Before applying this update, back up your JBoss Enterprise\nApplication Platform\u0027s \"jboss-as/server/[PROFILE]/deploy/\" directory, along\nwith all other customized configuration files.\n\nAll users of JBoss Enterprise Application Platform 5.1.2 as provided from\nthe Red Hat Customer Portal are advised to install this update.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2012:0075",
"url": "https://access.redhat.com/errata/RHSA-2012:0075"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=appplatform\u0026downloadType=securityPatches\u0026version=5.1.2",
"url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=appplatform\u0026downloadType=securityPatches\u0026version=5.1.2"
},
{
"category": "external",
"summary": "720948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=720948"
},
{
"category": "external",
"summary": "741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "750521",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750521"
},
{
"category": "external",
"summary": "767871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=767871"
},
{
"category": "external",
"summary": "783359",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=783359"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2012/rhsa-2012_0075.json"
}
],
"title": "Red Hat Security Advisory: jbossweb security update",
"tracking": {
"current_release_date": "2026-01-28T22:34:23+00:00",
"generator": {
"date": "2026-01-28T22:34:23+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.16"
}
},
"id": "RHSA-2012:0075",
"initial_release_date": "2012-01-31T22:55:00+00:00",
"revision_history": [
{
"date": "2012-01-31T22:55:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-02-20T12:45:08+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-01-28T22:34:23+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Enterprise Application Platform 5.1",
"product": {
"name": "Red Hat JBoss Enterprise Application Platform 5.1",
"product_id": "Red Hat JBoss Enterprise Application Platform 5.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_application_platform:5.1"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Enterprise Application Platform"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2011-1184",
"discovery_date": "2011-09-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "741401"
}
],
"notes": [
{
"category": "description",
"text": "The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not have the expected countermeasures against replay attacks, which makes it easier for remote attackers to bypass intended access restrictions by sniffing the network for valid requests, related to lack of checking of nonce (aka server nonce) and nc (aka nonce-count or client nonce count) values.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: Multiple weaknesses in HTTP DIGEST authentication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-1184"
},
{
"category": "external",
"summary": "RHBZ#741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-1184",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1184"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-1184",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-1184"
}
],
"release_date": "2011-09-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 5.1"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0075"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: Multiple weaknesses in HTTP DIGEST authentication"
},
{
"acknowledgments": [
{
"names": [
"Apache Tomcat project"
]
}
],
"cve": "CVE-2011-2526",
"discovery_date": "2011-07-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "720948"
}
],
"notes": [
{
"category": "description",
"text": "Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allows local users to bypass intended file access restrictions or cause a denial of service (infinite loop or JVM crash) by leveraging an untrusted web application.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: security manager restrictions bypass",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Security Response Team has rated this issue as having low security\nimpact, a future update may address this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-2526"
},
{
"category": "external",
"summary": "RHBZ#720948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=720948"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-2526",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-2526"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-2526",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2526"
}
],
"release_date": "2011-07-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 5.1"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0075"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:H/Au:N/C:P/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "tomcat: security manager restrictions bypass"
},
{
"acknowledgments": [
{
"names": [
"NTT OSSC"
]
}
],
"cve": "CVE-2011-4610",
"discovery_date": "2011-12-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "767871"
}
],
"notes": [
{
"category": "description",
"text": "JBoss Web, as used in Red Hat JBoss Communications Platform before 5.1.3, Enterprise Web Platform before 5.1.2, Enterprise Application Platform before 5.1.2, and other products, allows remote attackers to cause a denial of service (infinite loop) via vectors related to a crafted UTF-8 and a \"surrogate pair character\" that is \"at the boundary of an internal buffer.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "JBoss Web remote denial of service when surrogate pair character is placed at buffer boundary",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-4610"
},
{
"category": "external",
"summary": "RHBZ#767871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=767871"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-4610",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4610"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4610",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4610"
}
],
"release_date": "2012-01-31T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 5.1"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0075"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "JBoss Web remote denial of service when surrogate pair character is placed at buffer boundary"
},
{
"acknowledgments": [
{
"names": [
"oCERT"
]
}
],
"cve": "CVE-2011-4858",
"discovery_date": "2011-11-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "750521"
}
],
"notes": [
{
"category": "description",
"text": "Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: hash table collisions CPU usage DoS (oCERT-2011-003)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-4858"
},
{
"category": "external",
"summary": "RHBZ#750521",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750521"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-4858",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4858"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4858",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4858"
}
],
"release_date": "2011-12-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 5.1"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0075"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: hash table collisions CPU usage DoS (oCERT-2011-003)"
},
{
"cve": "CVE-2011-5062",
"discovery_date": "2011-09-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "741401"
}
],
"notes": [
{
"category": "description",
"text": "The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check qop values, which might allow remote attackers to bypass intended integrity-protection requirements via a qop=auth value, a different vulnerability than CVE-2011-1184.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: Multiple weaknesses in HTTP DIGEST authentication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-5062"
},
{
"category": "external",
"summary": "RHBZ#741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-5062",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5062"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-5062",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-5062"
}
],
"release_date": "2011-09-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 5.1"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0075"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: Multiple weaknesses in HTTP DIGEST authentication"
},
{
"cve": "CVE-2011-5063",
"discovery_date": "2011-09-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "741401"
}
],
"notes": [
{
"category": "description",
"text": "The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check realm values, which might allow remote attackers to bypass intended access restrictions by leveraging the availability of a protection space with weaker authentication or authorization requirements, a different vulnerability than CVE-2011-1184.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: Multiple weaknesses in HTTP DIGEST authentication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-5063"
},
{
"category": "external",
"summary": "RHBZ#741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-5063",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5063"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-5063",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-5063"
}
],
"release_date": "2011-09-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 5.1"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0075"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: Multiple weaknesses in HTTP DIGEST authentication"
},
{
"cve": "CVE-2011-5064",
"discovery_date": "2011-09-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "741401"
}
],
"notes": [
{
"category": "description",
"text": "DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret (aka private key), which makes it easier for remote attackers to bypass cryptographic protection mechanisms by leveraging knowledge of this string, a different vulnerability than CVE-2011-1184.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: Multiple weaknesses in HTTP DIGEST authentication",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-5064"
},
{
"category": "external",
"summary": "RHBZ#741401",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=741401"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-5064",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-5064"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-5064",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-5064"
}
],
"release_date": "2011-09-26T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 5.1"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0075"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: Multiple weaknesses in HTTP DIGEST authentication"
},
{
"cve": "CVE-2012-0022",
"discovery_date": "2012-01-17T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "783359"
}
],
"notes": [
{
"category": "description",
"text": "Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consumption) via a request that contains many parameters and parameter values, a different vulnerability than CVE-2011-4858.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "tomcat: large number of parameters DoS",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-0022"
},
{
"category": "external",
"summary": "RHBZ#783359",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=783359"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-0022",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-0022"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-0022",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0022"
}
],
"release_date": "2012-01-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2012-01-31T22:55:00+00:00",
"details": "The References section of this erratum contains a download link (you must\nlog in to download the update).\n\nThe JBoss server process must be restarted for this update to take effect.",
"product_ids": [
"Red Hat JBoss Enterprise Application Platform 5.1"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2012:0075"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat JBoss Enterprise Application Platform 5.1"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "tomcat: large number of parameters DoS"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…