Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2370

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-2370
Last Modified 15 Mar 2014 11:29:53
Published 03 Aug 2008 09:41:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-2370

Summary

Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.5.26, and 6.0.0 through 6.0.16, when a RequestDispatcher is used, performs path normalization before removing the query string from the URI, which allows remote attackers to conduct directory traversal attacks and read arbitrary files via a .. (dot dot) in a request parameter.

Vulnerable Systems

Application

  • Apache Tomcat 4.1.0

  • Apache Tomcat 4.1.1

  • Apache Tomcat 4.1.10

  • Apache Tomcat 4.1.11

  • Apache Tomcat 4.1.12

  • Apache Tomcat 4.1.13

  • Apache Tomcat 4.1.14

  • Apache Tomcat 4.1.15

  • Apache Tomcat 4.1.16

  • Apache Tomcat 4.1.17

  • Apache Tomcat 4.1.18

  • Apache Tomcat 4.1.19

  • Apache Tomcat 4.1.2

  • Apache Tomcat 4.1.20

  • Apache Tomcat 4.1.21

  • Apache Tomcat 4.1.22

  • Apache Tomcat 4.1.23

  • Apache Tomcat 4.1.24

  • Apache Tomcat 4.1.25

  • Apache Tomcat 4.1.26

  • Apache Tomcat 4.1.27

  • Apache Tomcat 4.1.28

  • Apache Tomcat 4.1.29

  • Apache Tomcat 4.1.3

  • Apache Tomcat 4.1.30

  • Apache Tomcat 4.1.31

  • Apache Tomcat 4.1.32

  • Apache Tomcat 4.1.33

  • Apache Tomcat 4.1.34

  • Apache Tomcat 4.1.35

  • Apache Tomcat 4.1.36

  • Apache Tomcat 4.1.37

  • Apache Tomcat 4.1.4

  • Apache Tomcat 4.1.5

  • Apache Tomcat 4.1.6

  • Apache Tomcat 4.1.7

  • Apache Tomcat 4.1.8

  • Apache Tomcat 4.1.9

  • Apache Tomcat 5.5.0

  • Apache Tomcat 5.5.1

  • Apache Tomcat 5.5.10

  • Apache Tomcat 5.5.11

  • Apache Tomcat 5.5.12

  • Apache Tomcat 5.5.13

  • Apache Tomcat 5.5.14

  • Apache Tomcat 5.5.15

  • Apache Tomcat 5.5.16

  • Apache Tomcat 5.5.17

  • Apache Tomcat 5.5.18

  • Apache Tomcat 5.5.19

  • Apache Tomcat 5.5.2

  • Apache Tomcat 5.5.20

  • Apache Tomcat 5.5.21

  • Apache Tomcat 5.5.22

  • Apache Tomcat 5.5.23

  • Apache Tomcat 5.5.24

  • Apache Tomcat 5.5.25

  • Apache Tomcat 5.5.26

  • Apache Tomcat 5.5.3

  • Apache Tomcat 5.5.4

  • Apache Tomcat 5.5.5

  • Apache Tomcat 5.5.6

  • Apache Tomcat 5.5.7

  • Apache Tomcat 5.5.8

  • Apache Tomcat 5.5.9

  • Apache Tomcat 6.0.0

  • Apache Tomcat 6.0.1

  • Apache Tomcat 6.0.10

  • Apache Tomcat 6.0.11

  • Apache Tomcat 6.0.12

  • Apache Tomcat 6.0.13

  • Apache Tomcat 6.0.14

  • Apache Tomcat 6.0.15

  • Apache Tomcat 6.0.16

  • Apache Tomcat 6.0.2

  • Apache Tomcat 6.0.3

  • Apache Tomcat 6.0.4

  • Apache Tomcat 6.0.5

  • Apache Tomcat 6.0.6

  • Apache Tomcat 6.0.7

  • Apache Tomcat 6.0.8

  • Apache Tomcat 6.0.9


References

BID - 30494

FEDORA - FEDORA-2008-8130

FEDORA - FEDORA-2008-8113

FEDORA - FEDORA-2008-7977

XF - tomcat-requestdispatcher-info-disclosure(44156)

VUPEN - ADV-2009-3316

VUPEN - ADV-2009-2215

VUPEN - ADV-2009-1535

VUPEN - ADV-2009-0503

VUPEN - ADV-2009-0320

VUPEN - ADV-2008-2823

VUPEN - ADV-2008-2780

VUPEN - ADV-2008-2305

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2009-0016.html

CONFIRM - http://www.vmware.com/security/advisories/VMSA-2009-0002.html

SECTRACK - 1020623

BID - 31681

BUGTRAQ - 20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components

BUGTRAQ - 20080801 [CVE-2008-2370] Apache Tomcat information disclosure vulnerability

REDHAT - RHSA-2008:0864

REDHAT - RHSA-2008:0862

REDHAT - RHSA-2008:0648

MANDRIVA - MDVSA-2008:188

CONFIRM - http://www.fujitsu.com/global/support/software/security/products-f/interstage-200902e.html

CONFIRM - http://tomcat.apache.org/security-6.html

CONFIRM - http://tomcat.apache.org/security-5.html

CONFIRM - http://tomcat.apache.org/security-4.html

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2008-401.htm

CONFIRM - http://support.apple.com/kb/HT3216

SREASON - 4099

SECUNIA - 37460

SECUNIA - 36249

SECUNIA - 35393

SECUNIA - 34013

SECUNIA - 33999

SECUNIA - 33797

SECUNIA - 32266

SECUNIA - 32222

SECUNIA - 32120

SECUNIA - 31982

SECUNIA - 31891

SECUNIA - 31865

SECUNIA - 31639

SECUNIA - 31381

SECUNIA - 31379

HP - HPSBUX02401

MLIST - [apache-announce] 20090808 [ANNOUNCE] Apache ODE 1.3.3

MLIST - [ode-user] 20090808 [ANNOUNCE] Apache ODE 1.3.3

SUSE - SUSE-SR:2009:004

SUSE - SUSE-SR:2008:018

APPLE - APPLE-SA-2008-10-09

HP - SSRT090005

HP - HPSBST02955

SECUNIA - 57126

Related Patches

Apple 2008-10-09 Security Update 2008-007 Server (Leopard)


Last Updated: 27 May 2016 11:02:31