exploitDog

CVE-2009-2693

Опубликовано: 24 янв. 2010

Источник: redhat

CVSS2: 4.3

Описание

Directory traversal vulnerability in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in an entry in a WAR file, as demonstrated by a ../../bin/catalina.bat entry.

Ссылки на источники

Дополнительная информация

Статус:

Low

https://bugzilla.redhat.com/show_bug.cgi?id=559738tomcat: unexpected file deletion and/or alteration

4.3 Medium

CVSS2

Связанные уязвимости

CVE-2009-2693

ubuntu

больше 15 лет назад

Directory traversal vulnerability in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in an entry in a WAR file, as demonstrated by a ../../bin/catalina.bat entry.

CVE-2009-2693

nvd

больше 15 лет назад

Directory traversal vulnerability in Apache Tomcat 5.5.0 through 5.5.28 and 6.0.0 through 6.0.20 allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in an entry in a WAR file, as demonstrated by a ../../bin/catalina.bat entry.

CVE-2009-2693

debian

больше 15 лет назад

Directory traversal vulnerability in Apache Tomcat 5.5.0 through 5.5.2 ...

GHSA-ggx9-4728-588r

github

около 3 лет назад

Apache Tomcat Directory Traversal vulnerability

ELSA-2010-0580

oracle-oval

почти 15 лет назад

ELSA-2010-0580: tomcat5 security update (IMPORTANT)

4.3 Medium

CVSS2