Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-0450Path Traversal in Apache Tomcat

CWE-22Path Traversal15 documents7 sources
Severity
5.0MEDIUMNVD
EPSS
91.1%
top 0.35%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Apache Tomcat
Timeline
PublishedMar 16
Latest updateMay 1

Description

Directory traversal vulnerability in Apache HTTP Server and Tomcat 5.x before 5.5.22 and 6.x before 6.0.10, when using certain proxy modules (mod_proxy, mod_rewrite, mod_jk), allows remote attackers to read arbitrary files via a .. (dot dot) sequence with combinations of (1) "/" (slash), (2) "\" (backslash), and (3) URL-encoded backslash (%5C) characters in the URL, which are valid separators in Tomcat but not in Apache.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDapache/tomcat5.0.05.5.22+1

🔴Vulnerability Details

3
GHSA
Apache Tomcat Directory Traversal2022-05-01
OSV
Apache Tomcat Directory Traversal2022-05-01
CVEList
CVE-2007-0450: Directory traversal vulnerability in Apache HTTP Server and Tomcat 52007-03-16

💥Exploits & PoCs

1
Exploit-DB
Apache Tomcat 5.x/6.0.x - Directory Traversal2007-03-14

📋Vendor Advisories

2
Red Hat
mod_jk sends decoded URL to tomcat2007-05-21
Red Hat
tomcat directory traversal2007-03-14

💬Community

8
Bugzilla
A number of tomcat issues2007-05-09
Bugzilla
CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195 CVE-2006-7196 CVE-2007-1858 CVE-2006-3835 CVE-2005-3510 CVE-2005-4838)2007-04-30
Bugzilla
CVE-2007-1860 mod_jk sends decoded URL to tomcat2007-04-24
Bugzilla
CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195 CVE-2006-7196 CVE-2007-1858 CVE-2006-3835)2007-04-19
Bugzilla
CVE-2005-2090 multiple tomcat issues (CVE-2007-0450 CVE-2006-7195)2007-04-19
CVE-2007-0450 — Path Traversal in Apache Tomcat | cvebase