CVE-2011-2526

2011-07-1400:00:00

ubuntu.com

4.4 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.0005 Low

EPSS

Percentile

17.2%

JSON

Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before
7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector,
does not validate certain request attributes, which allows local users to
bypass intended file access restrictions or cause a denial of service
(infinite loop or JVM crash) by leveraging an untrusted web application.

Bugs

<http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=634992>

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarchtomcat6< 6.0.24-2ubuntu1.9UNKNOWN
ubuntu10.10noarchtomcat6< 6.0.28-2ubuntu1.5UNKNOWN
ubuntu11.04noarchtomcat6< 6.0.28-10ubuntu2.2UNKNOWN
ubuntu11.10noarchtomcat6< 6.0.32-5ubuntu1.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	10.04	noarch	tomcat6	< 6.0.24-2ubuntu1.9	UNKNOWN
ubuntu	10.10	noarch	tomcat6	< 6.0.28-2ubuntu1.5	UNKNOWN
ubuntu	11.04	noarch	tomcat6	< 6.0.28-10ubuntu2.2	UNKNOWN
ubuntu	11.10	noarch	tomcat6	< 6.0.32-5ubuntu1.1	UNKNOWN