| Description: | Summary:
The remote host is missing an update for the 'tomcat'
package(s) announced via the referenced advisory.
Vulnerability Insight:
Apache Tomcat is a servlet container for the
Java Servlet and JavaServer Pages (JSP) technologies. The following packages
have been upgraded to a later upstream version: tomcat (7.0.76). (BZ#1414895)
Security Fix(es): * The Realm implementations did not process the supplied
password if the supplied user name did not exist. This made a timing attack
possible to determine valid user names. Note that the default configuration
includes the LockOutRealm which makes exploitation of this vulnerability harder.
(CVE-2016-0762) * It was discovered that a malicious web application could
bypass a configured SecurityManager via a Tomcat utility method that was
accessible to web applications. (CVE-2016-5018) * It was discovered that when a
SecurityManager was configured, Tomcat's system property replacement feature for
configuration files could be used by a malicious web application to bypass the
SecurityManager and read system properties that should not be visible.
(CVE-2016-6794) * It was discovered that a malicious web application could
bypass a configured SecurityManager via manipulation of the configuration
parameters for the JSP Servlet. (CVE-2016-6796) * It was discovered that it was
possible for a web application to access any global JNDI resource whether an
explicit ResourceLink had been configured or not. (CVE-2016-6797) Additional
Changes: For detailed information on changes in this release, see the Red Hat
Enterprise Linux 7.4 Release Notes linked from the References section.
Affected Software/OS:
tomcat on Red Hat Enterprise Linux Server (v. 7)
Solution:
Please Install the Updated Packages.
CVSS Score:
6.4
CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:N
|
