CVE-2011-1475

The HTTP BIO connector in Apache Tomcat 7.0.x before 7.0.12 does not properly handle HTTP pipelining, which allows remote attackers to read responses intended for other clients in opportunistic circumstances by examining the application data in HTTP packets, related to "a mix-up of responses for requests from different users."

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://svn.apache.org/viewvc?view=revision&revision=1086349	Patch
http://www.securityfocus.com/archive/1/517363
http://tomcat.apache.org/security-7.html	Vendor Advisory
http://seclists.org/fulldisclosure/2011/Apr/97
http://www.securityfocus.com/bid/47199
http://svn.apache.org/viewvc?view=revision&revision=1086352	Patch
https://issues.apache.org/bugzilla/show_bug.cgi?id=50957
http://www.vupen.com/english/advisories/2011/0894
http://www.securitytracker.com/id?1025303
http://securityreason.com/securityalert/8188
https://exchange.xforce.ibmcloud.com/vulnerabilities/66676
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12374

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:apache:tomcat:7.0.10:::::::*
	cpe:2.3:a:apache:tomcat:7.0.11:::::::*
	cpe:2.3:a:apache:tomcat:7.0.5:::::::*
	cpe:2.3:a:apache:tomcat:7.0.1:::::::*
	cpe:2.3:a:apache:tomcat:7.0.7:::::::*
	cpe:2.3:a:apache:tomcat:7.0.6:::::::*
	cpe:2.3:a:apache:tomcat:7.0.0:beta::::::
	cpe:2.3:a:apache:tomcat:7.0.9:::::::*
	cpe:2.3:a:apache:tomcat:7.0.8:::::::*
	cpe:2.3:a:apache:tomcat:7.0.0:::::::*
	cpe:2.3:a:apache:tomcat:7.0.3:::::::*
	cpe:2.3:a:apache:tomcat:7.0.2:::::::*
	cpe:2.3:a:apache:tomcat:7.0.4:::::::*

Information

Published : 2011-04-08 08:17

Updated : 2017-09-18 18:32

NVD link : CVE-2011-1475

Mitre link : CVE-2011-1475

JSON object : View

CWE

CWE-20

Improper Input Validation

Advertisement

Products Affected

apache

tomcat

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://svn.apache.org/viewvc?view=revision&revision=1086349", "name": "http://svn.apache.org/viewvc?view=revision&revision=1086349", "tags": ["Patch"], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/archive/1/517363", "name": "20110406 [SECURITY] CVE-2011-1475 Apache Tomcat information disclosure", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://tomcat.apache.org/security-7.html", "name": "http://tomcat.apache.org/security-7.html", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://seclists.org/fulldisclosure/2011/Apr/97", "name": "20110406 [SECURITY] CVE-2011-1475 Apache Tomcat information disclosure", "tags": [], "refsource": "FULLDISC"}, {"url": "http://www.securityfocus.com/bid/47199", "name": "47199", "tags": [], "refsource": "BID"}, {"url": "http://svn.apache.org/viewvc?view=revision&revision=1086352", "name": "http://svn.apache.org/viewvc?view=revision&revision=1086352", "tags": ["Patch"], "refsource": "CONFIRM"}, {"url": "https://issues.apache.org/bugzilla/show_bug.cgi?id=50957", "name": "https://issues.apache.org/bugzilla/show_bug.cgi?id=50957", "tags": [], "refsource": "MISC"}, {"url": "http://www.vupen.com/english/advisories/2011/0894", "name": "ADV-2011-0894", "tags": [], "refsource": "VUPEN"}, {"url": "http://www.securitytracker.com/id?1025303", "name": "1025303", "tags": [], "refsource": "SECTRACK"}, {"url": "http://securityreason.com/securityalert/8188", "name": "8188", "tags": [], "refsource": "SREASON"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/66676", "name": "tomcat-httpbio-info-disclosure(66676)", "tags": [], "refsource": "XF"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12374", "name": "oval:org.mitre.oval:def:12374", "tags": [], "refsource": "OVAL"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The HTTP BIO connector in Apache Tomcat 7.0.x before 7.0.12 does not properly handle HTTP pipelining, which allows remote attackers to read responses intended for other clients in opportunistic circumstances by examining the application data in HTTP packets, related to \"a mix-up of responses for requests from different users.\""}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-20"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2011-1475", "ASSIGNER": "secalert@redhat.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2011-04-08T15:17Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.11:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-09-19T01:32Z"}