what you don't know can hurt you
Showing 1 - 1 of 1 RSS Feed

Files

Mandriva Linux Security Advisory 2010-177
Posted Sep 13, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-177 - Directory traversal vulnerability in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20 allows remote attackers to create or overwrite arbitrary files via a. in an entry in a WAR file, as demonstrated by a././bin/catalina.bat entry. The autodeployment process in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20, when autoDeploy is enabled, deploys appBase files that remain from a failed undeploy, which might allow remote attackers to bypass intended authentication requirements via HTTP requests. Directory traversal vulnerability in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20 allows remote attackers to delete work-directory files via directory traversal sequences in a WAR filename, as demonstrated by the.war filename. Other issues have also been addressed.

tags | advisory, remote, web, arbitrary
systems | linux, mandriva
advisories | CVE-2009-2693, CVE-2009-2901, CVE-2009-2902, CVE-2010-1157, CVE-2010-2227
MD5 | 94506c262aa697e4827fff3e74ea8d41
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
ATTK Of The Pwns: Trend Micro Antivirus Tools Will Run Malware
Posted Oct 22, 2019

tags | headline, malware, flaw
Gustuff Android Banker Switches Up Technical Approach
Posted Oct 22, 2019

tags | headline, malware, bank, phone, cybercrime, fraud, google
Magecart Group Linked To Dridex Banking Trojan, Carbanak
Posted Oct 22, 2019

tags | headline, hacker, malware, bank, trojan, cybercrime, fraud
Assange Fails To Delay Extradition Hearing As Date Set For February
Posted Oct 22, 2019

tags | headline, government, usa, britain, russia, data loss, spyware, military
Czech Authorities Dismantle Alleged Russian Spy Network
Posted Oct 22, 2019

tags | headline, government, russia, cyberwar, spyware
EU Data Watchdog Raises Concerns Over MS Contracts
Posted Oct 21, 2019

tags | headline, government, privacy, microsoft, data loss
Russian Hackers Cloak Attacks Using Iranian Group
Posted Oct 21, 2019

tags | headline, government, malware, usa, russia, cyberwar, iran, military
Researchers Find Stealthy MSSQL Server Backdoor
Posted Oct 21, 2019

tags | headline, microsoft, china, cyberwar, backdoor
Leaky Autoclerk Database Exposes Info On Travelers
Posted Oct 21, 2019

tags | headline, government, privacy, database, data loss, spyware, military
US Is Out Of The Picture In Syria-Turkey Crisis. Putin Now Owns This Mess.
Posted Oct 20, 2019

tags | headline, government, usa, russia, turkey, syria, military
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close