cbcvebase.
CVE-2008-1232
published 2008-08-04

CVE-2008-1232: Cross-site scripting (XSS) vulnerability in Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.5.26, and 6.0.0 through 6.0.16 allows remote attackers to…

PriorityP433medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
75.87%
99.5th percentile
Cross-site scripting (XSS) vulnerability in Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.5.26, and 6.0.0 through 6.0.16 allows remote attackers to inject arbitrary web script or HTML via a crafted string that is used in the message argument to the HttpServletResponse.sendError method.

Affected

8 ranges
VendorProductVersion rangeFixed in
apachetomcat4.1.0 – 4.1.37
apachetomcat5.5.0 – 5.5.26
apachetomcat6.0.0 – 6.0.16
vmwareesxi
vmwarevmware_tools
vmwarevmware_vcenter_server
vmwarevmware_vsphere
vmwarevmware_workstation

Detection & IOCsextracted from sources · hover to see the quote

  • Look for XSS payloads injected via the HTTP error response message/reason-phrase — unfiltered user-supplied data passed to HttpServletResponse.sendError() appears verbatim in both the error page body and the HTTP reason-phrase header, enabling header injection.
  • Monitor HTTP responses from Tomcat 4.1.0–4.1.37, 5.5.0–5.5.26, and 6.0.0–6.0.16 for script or HTML content appearing inside the HTTP reason-phrase (status line) or error page body, which would indicate exploitation of the sendError XSS vector.
  • For successful exploitation, unfiltered user-supplied data must be included in the sendError message argument — audit application code paths where request-derived data flows into HttpServletResponse.sendError() calls.
  • ·Exploitation requires that the application passes unfiltered, user-controlled input directly into the message argument of HttpServletResponse.sendError(); applications that sanitize or do not reflect user input in that argument are not exploitable.

CVSS provenance

nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
vendor_redhat4.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.