CVE-2007-0450
published 2007-03-16CVE-2007-0450: Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules (mod_proxy…
PriorityP351medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
90.77%
99.8th percentile
Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules (mod_proxy, mod_rewrite, mod_jk), allows remote attackers to read arbitrary files via a .. (dot dot) sequence with combinations of (1) "/" (slash), (2) "\" (backslash), and (3) URL-encoded backslash (%5C) characters in the URL, which are valid separators in Tomcat but not in Apache.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | tomcat | >= 5.0.0 < 5.5.22 | 5.5.22 |
| apache | tomcat | >= 6.0.0 < 6.0.10 | 6.0.10 |
| apache | tomcat_jk_web_server_connector | <= 1.2.22 | — |
| debian | libapache-mod-jk | < libapache-mod-jk 1:1.2.23-1 (bookworm) | libapache-mod-jk 1:1.2.23-1 (bookworm) |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect directory traversal attempts using URL-encoded backslash (%5C) combined with dot-dot sequences (../) in HTTP request paths, which are valid separators in Tomcat but not in Apache. ↗
- →Alert on HTTP requests containing backslash followed by dot-dot path traversal patterns (e.g., \../) in URLs proxied through mod_proxy, mod_rewrite, or mod_jk. ↗
- →Monitor for double-encoded dot-dot sequences in URLs reaching mod_jk, as the connector decodes URLs before passing to Tomcat, potentially bypassing Apache access controls. ↗
- ·The vulnerability is only exploitable when Apache HTTP Server is used as a reverse proxy in front of Tomcat via mod_proxy, mod_rewrite, or mod_jk; direct Tomcat deployments are not affected by this specific bypass. ↗
- ·mod_jk specifically decodes request URLs within Apache before forwarding to Tomcat, meaning JkMount prefix rules can be bypassed; upgrading to mod_jk 1.2.23 or later resolves the related CVE-2007-1860 variant. ↗
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv5.0MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-hr63-37xg-3w68: mod_jk in Apache Tomcat JK Web Server Connector 1
ghsa_unreviewed·2022-05-01·CVSS 5.0
CVE-2007-1860 [MEDIUM] CWE-22 GHSA-hr63-37xg-3w68: mod_jk in Apache Tomcat JK Web Server Connector 1
mod_jk in Apache Tomcat JK Web Server Connector 1.2.x before 1.2.23 decodes request URLs within the Apache HTTP Server before passing the URL to Tomcat, which allows remote attackers to access protected pages via a crafted prefix JkMount, possibly involving double-encoded .. (dot dot) sequences and directory traversal, a related issue to CVE-2007-0450.
GHSA
Apache Tomcat Directory Traversal
ghsa·2022-05-01
CVE-2007-0450 [MEDIUM] CWE-22 Apache Tomcat Directory Traversal
Apache Tomcat Directory Traversal
Directory traversal vulnerability in Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules (mod_proxy, mod_rewrite, mod_jk), allows remote attackers to read arbitrary files via a `..` (dot dot) sequence with combinations of (1) `/` (slash), (2) `\` (backslash), and (3) URL-encoded backslash (`%5C`) characters in the URL, which are valid separators in Tomcat but not in Apache.
OSV
Apache Tomcat Directory Traversal
osv·2022-05-01
CVE-2007-0450 [MEDIUM] Apache Tomcat Directory Traversal
Apache Tomcat Directory Traversal
Directory traversal vulnerability in Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules (mod_proxy, mod_rewrite, mod_jk), allows remote attackers to read arbitrary files via a `..` (dot dot) sequence with combinations of (1) `/` (slash), (2) `\` (backslash), and (3) URL-encoded backslash (`%5C`) characters in the URL, which are valid separators in Tomcat but not in Apache.
OSV
CVE-2007-1860: mod_jk in Apache Tomcat JK Web Server Connector 1
osv·2007-05-25·CVSS 5.0
CVE-2007-1860 [MEDIUM] CVE-2007-1860: mod_jk in Apache Tomcat JK Web Server Connector 1
mod_jk in Apache Tomcat JK Web Server Connector 1.2.x before 1.2.23 decodes request URLs within the Apache HTTP Server before passing the URL to Tomcat, which allows remote attackers to access protected pages via a crafted prefix JkMount, possibly involving double-encoded .. (dot dot) sequences and directory traversal, a related issue to CVE-2007-0450.
Red Hat
mod_jk sends decoded URL to tomcat
vendor_redhat·2007-05-21·CVSS 5.0
CVE-2007-1860 [MEDIUM] mod_jk sends decoded URL to tomcat
mod_jk sends decoded URL to tomcat
mod_jk in Apache Tomcat JK Web Server Connector 1.2.x before 1.2.23 decodes request URLs within the Apache HTTP Server before passing the URL to Tomcat, which allows remote attackers to access protected pages via a crafted prefix JkMount, possibly involving double-encoded .. (dot dot) sequences and directory traversal, a related issue to CVE-2007-0450.
Red Hat
tomcat directory traversal
vendor_redhat·2007-03-14·CVSS 5.0
CVE-2007-0450 [MEDIUM] tomcat directory traversal
tomcat directory traversal
Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules (mod_proxy, mod_rewrite, mod_jk), allows remote attackers to read arbitrary files via a .. (dot dot) sequence with combinations of (1) "/" (slash), (2) "\" (backslash), and (3) URL-encoded backslash (%5C) characters in the URL, which are valid separators in Tomcat but not in Apache.
Debian
CVE-2007-1860: libapache-mod-jk - mod_jk in Apache Tomcat JK Web Server Connector 1.2.x before 1.2.23 decodes requ...
vendor_debian·2007·CVSS 5.0
CVE-2007-1860 [MEDIUM] CVE-2007-1860: libapache-mod-jk - mod_jk in Apache Tomcat JK Web Server Connector 1.2.x before 1.2.23 decodes requ...
mod_jk in Apache Tomcat JK Web Server Connector 1.2.x before 1.2.23 decodes request URLs within the Apache HTTP Server before passing the URL to Tomcat, which allows remote attackers to access protected pages via a crafted prefix JkMount, possibly involving double-encoded .. (dot dot) sequences and directory traversal, a related issue to CVE-2007-0450.
Scope: local
bookworm: resolved (fixed in 1:1.2.23-1)
bullseye: resolved (fixed in 1:1.2.23-1)
forky: resolved (fixed in 1:1.2.23-1)
sid: resolved (fixed in 1:1.2.23-1)
trixie: resolved (fixed in 1:1.2.23-1)
No detection rules found.
HackerOne
RCE and Complete Server Takeover of http://www.█████.starbucks.com.sg/
hackerone·2019-04-10·CVSS 10.0
[CRITICAL] RCE and Complete Server Takeover of http://www.█████.starbucks.com.sg/
RCE and Complete Server Takeover of http://www.█████.starbucks.com.sg/
This report from @spaceraccoon demonstrated a valid attack resulting in RCE and full compromise of the target. The detailed and thorough report was especially helpful throughout the triage process, and ultimately helped us reproduce and resolve the issue as quickly as possible. The vulnerable site has been taken offline.
We'd like to thank @spaceraccoon for the submission, and hope to continue to see reports like this in the future.
## Chaining CVEs: From a 404 Page to RCE
### Initial Recon
I first got to this subdomain via the usual subdomain enumeration. It looked unpromising: a 404 page that said “this website is not in use,” a little picture, and nothing else. Running path discovery for the usual pages turned u
Bugzilla
CVE-2007-5333 Improve cookie parsing for tomcat5 [rhn_satellite_5.0]
bugzilla·2008-01-10·CVSS 4.3
CVE-2007-5333 [MEDIUM] CVE-2007-5333 Improve cookie parsing for tomcat5 [rhn_satellite_5.0]
CVE-2007-5333 Improve cookie parsing for tomcat5 [rhn_satellite_5.0]
rhn_satellite_5.0 tracking bug: see blocks bug list for full details of the security issue(s).
This bug is never intended to be made public, please put any public notes in the 'blocks' bugs.
For the security issues handling process overview see: http://intranet.corp.redhat.com/ic/intranet/SecurityZStreamFAQ
[bug automatically created by: add-tracking-bugs]
Discussion:
[root@rlx-3-18 RPMS]# ls tomcat5-5.0.30-0jpp_9rh.noarch.rpm
tomcat5-5.0.30-0jpp_9rh.noarch.rpm
[root@rlx-3-18 RPMS]# pwd
/tmp/mnt/RPMS
[root@rlx-3-18 RPMS]#
verified
---
This is not a bug. The real issue that was talked about is actually:
private bug Bugzilla Bug 430731: CVE-2007-5461 CVE-2007-3385 CVE-2007-3382
CVE-2007-1358 CVE-2007-1355 CVE-2007
Bugzilla
A number of tomcat issues
bugzilla·2007-05-09·CVSS 5.0
CVE-2005-3164 [MEDIUM] A number of tomcat issues
A number of tomcat issues
A number of issues affected tomcat 4.0.6 as distributed with Stronghold. Most
of these are minor severity, all need triaging:
http://tomcat.apache.org/security-4.html
Information disclosure CVE-2005-3164
Information disclosure CVE-2005-2090
Directory traversal CVE-2007-0450
Cross-site scripting CVE-2007-1358
Cross-site scripting CVE-2006-7196
Directory listing CVE-2006-3835
Cross-site scripting CVE-2005-4838
Denial of service CVE-2005-3510
Denial of service CVE-2003-0866
Information disclosure CVE-2002-2006
Discussion:
closing; Stronghold has reached end of life.
Bugzilla
CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195 CVE-2006-7196 CVE-2007-1858 CVE-2006-3835 CVE-2005-3510 CVE-2005-4838)
bugzilla·2007-04-30·CVSS 4.3
CVE-2005-2090 [MEDIUM] CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195 CVE-2006-7196 CVE-2007-1858 CVE-2006-3835 CVE-2005-3510 CVE-2005-4838)
CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195 CVE-2006-7196 CVE-2007-1858 CVE-2006-3835 CVE-2005-3510 CVE-2005-4838)
A number of flaws affect the version of Tomcat5 shipped with RHAPS-EL3 (last
updated in RHSA-2006:0592 to 5.0.28). Please see linked bugs for details.
Discussion:
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.
http://rhn.redhat.com/errata/RHSA-2007-0340.html
Bugzilla
CVE-2007-1860 mod_jk sends decoded URL to tomcat
bugzilla·2007-04-24·CVSS 5.0
CVE-2007-1860 [MEDIUM] CVE-2007-1860 mod_jk sends decoded URL to tomcat
CVE-2007-1860 mod_jk sends decoded URL to tomcat
It was reported that the patch CVE-2007-0450 was insufficient as a carefully
crafted encoded URL could still bypass a proxy. However this is due to an
interaction with mod_jk, where mod_jk sends a decoded URL to Tomcat but it
should send a raw URL.
Jean-Frederic writes:
What mod_jk sends to Tomcat
+++
12 34 01 A9 02 02 00 08 48 54 54 50 2F 31 2E 31 - .4......HTTP/1.1
00 00 1A 2F 6D 79 61 70 70 2F 25 32 45 25 32 45 - .../myapp/%2E%2E
2F 6D 61 6E 61 67 65 72 2F 68 74 6D 6C 00 00 0C - /manager/html...
+++
Tomcat decodes the %2E%2E into .. and normalises /myapp/../manager/html
to /manager/html.
The Tomcat security team give this advice:
Due to the impossibility to guarantee that all URLs are handled by Tomcat as
they are in every possible p
Bugzilla
CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195 CVE-2006-7196 CVE-2007-1858 CVE-2006-3835)
bugzilla·2007-04-19·CVSS 4.3
CVE-2005-2090 [MEDIUM] CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195 CVE-2006-7196 CVE-2007-1858 CVE-2006-3835)
CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195 CVE-2006-7196 CVE-2007-1858 CVE-2006-3835)
A number of flaws affect the version of Tomcat5 shipped with RHAPS2 (last
updated in RHSA-2006:0161 to 5.5.12). Please see linked bugs for details.
Discussion:
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.
http://rhn.redhat.com/errata/RHSA-2007-0326.html
Bugzilla
CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195)
bugzilla·2007-04-19·CVSS 4.3
CVE-2005-2090 [MEDIUM] CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195)
CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195)
+++ This bug was initially created as a clone of Bug #237088 +++ for EUS
A number of flaws affect the version of Tomcat5 shipped with RHEL5. Please see
linked bugs for details.
Discussion:
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.
http://rhn.redhat.com/errata/RHSA-2007-0327.html
Bugzilla
CVE-2006-3835 tomcat directory listing issue
bugzilla·2007-04-19·CVSS 5.0
CVE-2006-3835 [MEDIUM] CVE-2006-3835 tomcat directory listing issue
CVE-2006-3835 tomcat directory listing issue
According to http://tomcat.apache.org/security-5.html
Fixed in Apache Tomcat 5.5.13, 5.0.HEAD
Directory listing CVE-2006-3835
This is expected behaviour when directory listings are enabled. The semicolon
(;) is the separator for path parameters so inserting one before a file name
changes the request into a request for a directory with a path parameter. If
directory listings are enabled, a directory listing will be shown. In response
to this and other directory listing issues, directory listings were changed to
be disabled by default.
Affects: 5.0.0-5.5.30, 5.5.0-5.5.12
Discussion:
Note that there's no actual fix in Tomcat 5.5.17 (as the problem is not Tomcat
related, but is caused by mod_jk). It is simply that in that release
directory li
Bugzilla
CVE-2007-0450 tomcat directory traversal
bugzilla·2007-04-19·CVSS 5.0
CVE-2007-0450 [MEDIUM] CVE-2007-0450 tomcat directory traversal
CVE-2007-0450 tomcat directory traversal
From http://tomcat.apache.org/security-5.html
Fixed in Apache Tomcat 5.5.22, 5.0.HEAD
Directory traversal CVE-2007-0450
Tomcat permits '\', '%2F' and '%5C' as path delimiters. When Tomcat is used
behind a proxy (including, but not limited to, Apache HTTP server with mod_proxy
and mod_jk) configured to only proxy some contexts, a HTTP request containing
strings like "/\../" may allow attackers to work around the context restriction
of the proxy, and access the non-proxied contexts.
The following Java system properties have been added to Tomcat to provide
additional control of the handling of path delimiters in URLs (both options
default to false):
* org.apache.tomcat.util.buf.UDecoder.ALLOW_ENCODED_SLASH: true|false
* org.apache.catalina.connec
Bugzilla
CVE-2005-2090 tomcat multiple content-length header poisioning
bugzilla·2007-04-19·CVSS 4.3
CVE-2005-2090 [MEDIUM] CVE-2005-2090 tomcat multiple content-length header poisioning
CVE-2005-2090 tomcat multiple content-length header poisioning
From http://tomcat.apache.org/security-5.html
Fixed in Apache Tomcat 5.5.23
Information disclosure CVE-2005-2090
Requests with multiple content-length headers should be rejected as invalid.
When multiple components (firewalls, caches, proxies and Tomcat) process a
sequence of requests where one or more requests contain multiple content-length
headers and several components do not reject the request and make different
decisions as to which content-length leader to use an attacker can poision a
web-cache, perform an XSS attack and obtain senstive information from requests
other then their own. Tomcat now returns 400 for requests with multiple
content-length headers.
Affects: 5.0.0-5.0.HEAD, 5.5.0-5.5.22
Discussion:
Created
Bugzilla
CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195)
bugzilla·2007-04-19·CVSS 4.3
CVE-2005-2090 [MEDIUM] CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195)
CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195)
A number of flaws affect the version of Tomcat5 shipped with RHDS3. Please see
linked bugs for details.
Discussion:
Run manually:
http://yakko.test.redhat.com/run.php?runid=14719
http://yakko.test.redhat.com/run.php?runid=14720
---
Thanks Mark.
Vivek, Can you check those test runs and sign off on the changes as required.
Thanks.
---
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.
http://rhn.redhat.com/errata/RHSA-2007-0328.html
Bugzilla
CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195)
bugzilla·2007-04-19·CVSS 4.3
CVE-2005-2090 [MEDIUM] CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195)
CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195)
A number of flaws affect the version of Tomcat5 shipped with RHEL5. Please see
linked bugs for details.
Discussion:
The fix had already been merged to the RHEL-5 branch and tagged. The
corresponding backports were made to the 5.0.z branch and shipped as part of
http://rhn.redhat.com/errata/RHSA-2007-0327.html.
http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspxhttp://docs.info.apple.com/article.html?artnum=306172http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.htmlhttp://lists.vmware.com/pipermail/security-announce/2008/000003.htmlhttp://secunia.com/advisories/24732http://secunia.com/advisories/25106http://secunia.com/advisories/25280http://secunia.com/advisories/26235http://secunia.com/advisories/26660http://secunia.com/advisories/27037http://secunia.com/advisories/28365http://secunia.com/advisories/30899http://secunia.com/advisories/30908http://secunia.com/advisories/33668http://security.gentoo.org/glsa/glsa-200705-03.xmlhttp://securityreason.com/securityalert/2446http://sunsolve.sun.com/search/document.do?assetkey=1-26-239312-1http://support.avaya.com/elmodocs2/security/ASA-2007-206.htmhttp://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197540http://tomcat.apache.org/security-4.htmlhttp://tomcat.apache.org/security-5.htmlhttp://tomcat.apache.org/security-6.htmlhttp://www.fujitsu.com/global/support/software/security/products-f/interstage-200702e.htmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2007:241http://www.novell.com/linux/security/advisories/2007_15_sr.htmlhttp://www.novell.com/linux/security/advisories/2007_5_sr.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0327.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0360.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0261.htmlhttp://www.sec-consult.com/287.htmlhttp://www.sec-consult.com/fileadmin/Advisories/20070314-0-apache_tomcat_directory_traversal.txthttp://www.securityfocus.com/archive/1/462791/100/0/threadedhttp://www.securityfocus.com/archive/1/485938/100/0/threadedhttp://www.securityfocus.com/archive/1/500396/100/0/threadedhttp://www.securityfocus.com/archive/1/500412/100/0/threadedhttp://www.securityfocus.com/bid/22960http://www.securityfocus.com/bid/25159http://www.vupen.com/english/advisories/2007/0975http://www.vupen.com/english/advisories/2007/2732http://www.vupen.com/english/advisories/2007/3087http://www.vupen.com/english/advisories/2007/3386http://www.vupen.com/english/advisories/2008/0065http://www.vupen.com/english/advisories/2008/1979/referenceshttp://www.vupen.com/english/advisories/2009/0233https://exchange.xforce.ibmcloud.com/vulnerabilities/32988https://lists.apache.org/thread.html/277d42b48b6e9aef50949c0dcc79ce21693091d73da246b3c1981925%40%3Cdev.tomcat.apache.org%3Ehttps://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3Ehttps://lists.apache.org/thread.html/5b7a23e245c93235c503900da854a143596d901bf1a1f67e851a5de4%40%3Cdev.tomcat.apache.org%3Ehttps://lists.apache.org/thread.html/8d2a579bbd977c225c70cb23b0ec54865fb0dab5da3eff1e060c9935%40%3Cdev.tomcat.apache.org%3Ehttps://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3Ehttps://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3Ehttps://lists.apache.org/thread.html/r5c616dfc49156e4b06ffab842800c80f4425924d0f20c452c127a53c%40%3Cdev.tomcat.apache.org%3Ehttps://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3Ehttps://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3Ehttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10643http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspxhttp://docs.info.apple.com/article.html?artnum=306172http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01178795http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.htmlhttp://lists.vmware.com/pipermail/security-announce/2008/000003.htmlhttp://secunia.com/advisories/24732http://secunia.com/advisories/25106http://secunia.com/advisories/25280http://secunia.com/advisories/26235http://secunia.com/advisories/26660http://secunia.com/advisories/27037http://secunia.com/advisories/28365http://secunia.com/advisories/30899http://secunia.com/advisories/30908http://secunia.com/advisories/33668http://security.gentoo.org/glsa/glsa-200705-03.xmlhttp://securityreason.com/securityalert/2446http://sunsolve.sun.com/search/document.do?assetkey=1-26-239312-1http://support.avaya.com/elmodocs2/security/ASA-2007-206.htmhttp://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197540http://tomcat.apache.org/security-4.htmlhttp://tomcat.apache.org/security-5.htmlhttp://tomcat.apache.org/security-6.htmlhttp://www.fujitsu.com/global/support/software/security/products-f/interstage-200702e.htmlhttp://www.mandriva.com/security/advisories?name=MDKSA-2007:241http://www.novell.com/linux/security/advisories/2007_15_sr.htmlhttp://www.novell.com/linux/security/advisories/2007_5_sr.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0327.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0360.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0261.htmlhttp://www.sec-consult.com/287.htmlhttp://www.sec-consult.com/fileadmin/Advisories/20070314-0-apache_tomcat_directory_traversal.txthttp://www.securityfocus.com/archive/1/462791/100/0/threadedhttp://www.securityfocus.com/archive/1/485938/100/0/threadedhttp://www.securityfocus.com/archive/1/500396/100/0/threadedhttp://www.securityfocus.com/archive/1/500412/100/0/threadedhttp://www.securityfocus.com/bid/22960http://www.securityfocus.com/bid/25159http://www.vupen.com/english/advisories/2007/0975http://www.vupen.com/english/advisories/2007/2732http://www.vupen.com/english/advisories/2007/3087http://www.vupen.com/english/advisories/2007/3386http://www.vupen.com/english/advisories/2008/0065http://www.vupen.com/english/advisories/2008/1979/references
+ 12 more references
2007-03-16
Published