Detections
Analytics
Apache Tomcat 6.0.x < 6.0.28 Multiple Vulnerabilities
medium Nessus Network Monitor Plugin ID 5788
Synopsis
The remote Apache Tomcat server is affected by multiple vulnerabilities.Description
According to its self-reported version number, the instance of Apache Tomcat 6.0 listening on the remote host is prior to 6.0.28. It is, therefore, affected by multiple vulnerabilities:- If a web app is configured to use BASIC or DIGEST authentication and the 'realm-name' attribute is not configured in that web app's 'web.xml' file, the remote server's hostname or IP will be included in replies. (CVE-2010-1157)
- An error exists in the handling of invalid values in the 'Transfer-Encoding' header of a request. An attacker can exploit this to cause a denial of service or to disclose sensitive information. (CVE-2010-2227)
Note that Nessus Network Monitor has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Upgrade to Apache Tomcat 6.0.28 or later.See Also
http://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.28
Plugin Details
Severity: Medium
ID: 5788
Family: Web Servers
Published: 2/11/2011
Updated: 3/6/2019
Nessus ID: 48255
Risk Information
VPR
Risk Factor: Low
Score: 2.2
CVSS v2
Risk Factor: Medium
Base Score: 6.4
Temporal Score: 5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P
CVSS v3
Risk Factor: Medium
Base Score: 6.5
Temporal Score: 5.9
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:apache:tomcat
Patch Publication Date: 7/9/2010
Vulnerability Publication Date: 4/21/2010
Reference Information
CVE: CVE-2010-1157
BID: 39635