Bugtraq mailing list archives
Security bug in Apache project: Jakarta Tomcat
From: Jan.Madsen () SECURITYWORKERS DK (Jan Madsen)
Date: Wed, 22 Mar 2000 01:08:15 +0100
The Apache project: Jakarta Tomcat contains a serius security bug. Tomcat is used together with the Apache web server to serve Java Server Pages and Java servlets. Summary from the Tomcat development team advisory is posted below: Advisory: Delivered with Tomcat is an example (jsp/source.jsp) that can be used to deliver the contents of any file on your machine. Recommended action: The simplest course of action is to simply remove this example from your machine. Alternatively, you can replace the associated ShowSource.class file with one from the current 3.1 beta. Fixes: Fixes have been made to the core of Tomcat to not allow any file references to be resolved outside of the context being used for the resolution. Additionally, a change has been made to ShowSource.java to disallow any requests which contain the string "..". The 3.1 beta 1 release has been refreshed with these fixes applied. ......................................................................... ........................................................................... Med venlig hilsen/Best regards/Freundliche Grüße Jan Madsen S e c u r i t y w o r k e r s Denmark Tlf: (+45) 70 26 88 62 Fax: (+45) 70 26 88 63 http://www.securityworkers.com/ mailto:Jan.Madsen () securityworkers dk ........................................................................... .........................................................................
Current thread:
- ICQ remote DoS, (continued)
- ICQ remote DoS Philip Stoev (Mar 10)
- TESO advisory -- atsadc krahmer () CS UNI-POTSDAM DE (Mar 11)
- Re: [ Hackerslab bug_paper ] Linux printtool get printer passwor Brian Knotts (Mar 13)
- Enumerate Root Web Server Directory Vulnerability for IIS 4.0 Jason Lutz (Mar 09)
- Re: Enumerate Root Web Server Directory Vulnerability for IIS 4.0 Chris Paget (Mar 17)
- SQL Server Vulnerability details Chip Andrews (Mar 18)
- Re: PGP Signatures security BUG! Florian Weimer (Mar 10)
- Re: PGP Signatures security BUG! Will Price (Mar 20)
- Esafe Protect Gateway (CVP) does not scan virus under some conditions Hugo.van.der.Kooij () CAIW NL (Mar 21)
- Re: Esafe Protect Gateway (CVP) does not scan virus under some conditions Alon Rotem (Mar 24)
- Security bug in Apache project: Jakarta Tomcat Jan Madsen (Mar 21)
- [TL-Security-Announce] nmh-1.0.2 and earlier TLSA200008-1 Katie Moussouris (Mar 21)
- New Solaris Vulnerability Calculator, Sun Mailing list, and Sun Focus area from SecurityFocus.com Jeremy Rauch (Mar 13)
- Re: PGP Signatures security BUG! Tobias Haustein (Mar 08)
- Re: PGP Signatures security BUG! Povl H. Pedersen (Mar 09)
- Re: PGP Signatures security BUG! Salzman, Noah (Mar 08)
- Re: PGP Signatures security BUG! Steven M. Bellovin (Mar 08)