CVE-2016-5425

Опубликовано: 10 окт. 2016

Источник: redhat

CVSS3: 7

CVSS2: 6.9

Описание

The Tomcat package on Red Hat Enterprise Linux (RHEL) 7, Fedora, CentOS, Oracle Linux, and possibly other Linux distributions uses weak permissions for /usr/lib/tmpfiles.d/tomcat.conf, which allows local users to gain root privileges by leveraging membership in the tomcat group.

It was discovered that the Tomcat packages installed configuration file /usr/lib/tmpfiles.d/tomcat.conf writeable to the tomcat group. A member of the group or a malicious web application deployed on Tomcat could use this flaw to escalate their privileges.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Developer Toolset 3.1	devtoolset-3-tomcat	Not affected
Red Hat Enterprise Linux 5	tomcat5	Not affected
Red Hat Enterprise Linux 6	tomcat6	Not affected
Red Hat JBoss Data Grid 6	jbossweb	Not affected
Red Hat JBoss Data Virtualization 6	jbossweb	Not affected
Red Hat JBoss Enterprise Application Platform 6	jbossweb	Not affected
Red Hat JBoss Enterprise Application Platform 6	tomcat7	Not affected
Red Hat JBoss Enterprise Application Platform 7	tomcat	Not affected
Red Hat JBoss Enterprise Web Server 2	tomcat6	Not affected
Red Hat JBoss Enterprise Web Server 2	tomcat7	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important

Дефект:

CWE-284

https://bugzilla.redhat.com/show_bug.cgi?id=1362545tomcat: Local privilege escalation via systemd-tmpfiles service

7 High

CVSS3

6.9 Medium

CVSS2

Связанные уязвимости

CVE-2016-5425

CVSS3: 7.8

ubuntu

около 9 лет назад

CVE-2016-5425

CVSS3: 7.8

nvd

около 9 лет назад

CVE-2016-5425

CVSS3: 7.8

debian

около 9 лет назад

The Tomcat package on Red Hat Enterprise Linux (RHEL) 7, Fedora, CentO ...

GHSA-c7fc-mp9g-99j3

CVSS3: 7.8

github

больше 3 лет назад

ELSA-2016-2046

oracle-oval

около 9 лет назад

ELSA-2016-2046: tomcat security update (IMPORTANT)

7 High

CVSS3

6.9 Medium

CVSS2