Rapid7 Vulnerability & Exploit Database

RHSA-2011:1845: tomcat5 security update

Back to Search

RHSA-2011:1845: tomcat5 security update



Apache Tomcat is a servlet container for the Java Servlet and JavaServerPages (JSP) technologies.It was found that web applications could modify the location of the Tomcathost's work directory. As web applications deployed on Tomcat have read andwrite access to this directory, a malicious web application could use thisflaw to trick Tomcat into giving it read and write access to an arbitrarydirectory on the file system. (CVE-2010-3718)A cross-site scripting (XSS) flaw was found in the Manager application,used for managing web applications on Apache Tomcat. A malicious webapplication could use this flaw to conduct an XSS attack, leading toarbitrary web script execution with the privileges of victims who arelogged into and viewing Manager application web pages. (CVE-2011-0013)Multiple flaws were found in the way Tomcat handled HTTP DIGESTauthentication. These flaws weakened the Tomcat HTTP DIGEST authenticationimplementation, subjecting it to some of the weaknesses of HTTP BASICauthentication, for example, allowing remote attackers to perform sessionreplay attacks. (CVE-2011-1184)A flaw was found in the Tomcat MemoryUserDatabase. If a runtime exceptionoccurred when creating a new user with a JMX client, that user's passwordwas logged to Tomcat log files. Note: By default, only administrators haveaccess to such log files. (CVE-2011-2204)Users of Tomcat should upgrade to these updated packages, which containbackported patches to correct these issues. Tomcat must be restarted forthis update to take effect.


  • redhat-upgrade-tomcat5
  • redhat-upgrade-tomcat5-admin-webapps
  • redhat-upgrade-tomcat5-common-lib
  • redhat-upgrade-tomcat5-jasper
  • redhat-upgrade-tomcat5-jasper-javadoc
  • redhat-upgrade-tomcat5-jsp-2-0-api
  • redhat-upgrade-tomcat5-jsp-2-0-api-javadoc
  • redhat-upgrade-tomcat5-server-lib
  • redhat-upgrade-tomcat5-servlet-2-4-api
  • redhat-upgrade-tomcat5-servlet-2-4-api-javadoc
  • redhat-upgrade-tomcat5-webapps

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center