CVE-2007-5461

Loading...

General

Score:3.5/10.0
Severity:Low
Category:Path Manipulation
Exploit:Available

Impact Metrics

Confidentiality:Partial
Integrity:None
Availability:None

Exploitability Metrics

Access Vector:Network
Access Complexity:Medium
Authentication:Multiple

Relative vulnerabilities

CVE-2002-1148, CVE-2002-1394, CVE-2002-2006, CVE-2003-0866, CVE-2004-0687, CVE-2004-0688, CVE-2004-0885, CVE-2004-0914, CVE-2005-0605, CVE-2005-2090, CVE-2005-3164, CVE-2005-3510, CVE-2005-3964, CVE-2005-4838, CVE-2006-0254, CVE-2006-0898, CVE-2006-1329, CVE-2006-3835, CVE-2006-3918, CVE-2006-5752, CVE-2006-7195, CVE-2006-7196, CVE-2006-7197, CVE-2007-0243, CVE-2007-0450, CVE-2007-1349, CVE-2007-1355, CVE-2007-1358, CVE-2007-1860, CVE-2007-1863, CVE-2007-2052, CVE-2007-2435, CVE-2007-2449, CVE-2007-2450, CVE-2007-2691, CVE-2007-2788, CVE-2007-2789, CVE-2007-3304, CVE-2007-3382, CVE-2007-3383, CVE-2007-3385, CVE-2007-3847, CVE-2007-4465, CVE-2007-4850, CVE-2007-4965, CVE-2007-5000, CVE-2007-5116, CVE-2007-5232, CVE-2007-5236, CVE-2007-5237, CVE-2007-5238, CVE-2007-5239, CVE-2007-5240, CVE-2007-5274, CVE-2007-5333, CVE-2007-5342, CVE-2007-5689, CVE-2007-5961, CVE-2007-5966, CVE-2007-5969, CVE-2007-6276, CVE-2007-6286, CVE-2007-6306, CVE-2007-6388, CVE-2007-6420, CVE-2008-0002, CVE-2008-0005, CVE-2008-0128, CVE-2008-0226, CVE-2008-0227, CVE-2008-0657, CVE-2008-0674, CVE-2008-0960, CVE-2008-1105, CVE-2008-1145, CVE-2008-1185, CVE-2008-1186, CVE-2008-1187, CVE-2008-1188, CVE-2008-1189, CVE-2008-1190, CVE-2008-1191, CVE-2008-1192, CVE-2008-1193, CVE-2008-1194, CVE-2008-1195, CVE-2008-1196, CVE-2008-1232, CVE-2008-1389, CVE-2008-1678, CVE-2008-1721, CVE-2008-1767, CVE-2008-1887, CVE-2008-1927, CVE-2008-1947, CVE-2008-2079, CVE-2008-2307, CVE-2008-2308, CVE-2008-2309, CVE-2008-2310, CVE-2008-2311, CVE-2008-2313, CVE-2008-2314, CVE-2008-2315, CVE-2008-2364, CVE-2008-2369, CVE-2008-2370, CVE-2008-2371, CVE-2008-2662, CVE-2008-2663, CVE-2008-2664, CVE-2008-2712, CVE-2008-2725, CVE-2008-2726, CVE-2008-2938, CVE-2008-2939, CVE-2008-3142, CVE-2008-3143, CVE-2008-3144, CVE-2008-3294, CVE-2008-3432, CVE-2008-3528, CVE-2008-3641, CVE-2008-3642, CVE-2008-3643, CVE-2008-3645, CVE-2008-3646, CVE-2008-3647, CVE-2008-3912, CVE-2008-3913, CVE-2008-3914, CVE-2008-4101, CVE-2008-4211, CVE-2008-4212, CVE-2008-4214, CVE-2008-4215, CVE-2008-4307, CVE-2008-4864, CVE-2008-5031, CVE-2008-5515, CVE-2008-5700, CVE-2009-0023, CVE-2009-0028, CVE-2009-0033, CVE-2009-0159, CVE-2009-0269, CVE-2009-0322, CVE-2009-0580, CVE-2009-0675, CVE-2009-0676, CVE-2009-0696, CVE-2009-0745, CVE-2009-0746, CVE-2009-0747, CVE-2009-0748, CVE-2009-0778, CVE-2009-0781, CVE-2009-0783, CVE-2009-0787, CVE-2009-0834, CVE-2009-1072, CVE-2009-1093, CVE-2009-1094, CVE-2009-1095, CVE-2009-1096, CVE-2009-1097, CVE-2009-1098, CVE-2009-1099, CVE-2009-1100, CVE-2009-1101, CVE-2009-1102, CVE-2009-1103, CVE-2009-1104, CVE-2009-1105, CVE-2009-1106, CVE-2009-1107, CVE-2009-1192, CVE-2009-1252, CVE-2009-1336, CVE-2009-1337, CVE-2009-1385, CVE-2009-1388, CVE-2009-1389, CVE-2009-1439, CVE-2009-1630, CVE-2009-1633, CVE-2009-1891, CVE-2009-1895, CVE-2009-1955, CVE-2009-1956, CVE-2009-2406, CVE-2009-2407, CVE-2009-2412, CVE-2009-2414, CVE-2009-2416, CVE-2009-2417, CVE-2009-2625, CVE-2009-2670, CVE-2009-2671, CVE-2009-2672, CVE-2009-2673, CVE-2009-2675, CVE-2009-2676, CVE-2009-2692, CVE-2009-2698, CVE-2009-2716, CVE-2009-2718, CVE-2009-2719, CVE-2009-2720, CVE-2009-2721, CVE-2009-2722, CVE-2009-2723, CVE-2009-2724, CVE-2009-2730, CVE-2009-2847, CVE-2009-2848, CVE-2009-3094, CVE-2009-3095, CVE-2009-4901, CVE-2009-4902, CVE-2010-0407, CVE-2010-0434

Published on 15/10/07 - Updated on 25/03/19

Description

Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.

Category: Path Manipulation

CWE-22 (Path Traversal)
The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Security Notices

US National Vulnerability DatabaseCVE-2007-5461
Agence Nationale de la Sécurité des Systèmes d'Information CERTA-2007-AVI-470, CERTA-2008-AVI-343, CERTA-2008-AVI-349, CERTA-2008-AVI-492, CERTA-2009-AVI-513, CERTFR-2014-AVI-089
CentOS CESA-2008:0042
Redhat RHSA-2008:0042, RHSA-2008:0195, RHSA-2008:0261, RHSA-2008:0524, RHSA-2008:0630, RHSA-2008:0862, RHSA-2010:0602
Renater 2008/VULN218, 2008/VULN259, 2008/VULN260, 2008/VULN417, 2009/VULN470, 2010/VULN104

Exploits

Exploit-DBEDB-4530, EDB-4552
SecurityFocusBID-26070

Relative technologies

VendorProduct
apachetomcat

Share this vulnerability with:

Twitter Facebook LinkedIn Mail