CVE-2018-1323
published 2018-03-12CVE-2018-1323: The IIS/ISAPI specific code in the Apache Tomcat JK ISAPI Connector 1.2.0 to 1.2.42 that normalised the requested path before matching it to the URI-worker map…
high7.5CVSS 3.0
AVNACLPRNUINSUCHINAN
EXPLOIT
The IIS/ISAPI specific code in the Apache Tomcat JK ISAPI Connector 1.2.0 to 1.2.42 that normalised the requested path before matching it to the URI-worker map did not handle some edge cases correctly. If only a sub-set of the URLs supported by Tomcat were exposed via IIS, then it was possible for a specially constructed request to expose application functionality through the reverse proxy that was not intended for clients accessing Tomcat via the reverse proxy.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | tomcat_jk_connector | 1.2.0 – 1.2.42 | — |
| apache | tomcat_jk_connector | 1.2.0 – 1.2.44 | — |
| apache_software_foundation | apache_tomcat_connectors | — | — |
| apache_software_foundation | apache_tomcat_connectors | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | libapache-mod-jk | < libapache-mod-jk 1:1.2.46-1 (bookworm) | libapache-mod-jk 1:1.2.46-1 (bookworm) |
| debian | libapache-mod-jk | — | — |
CVSS provenance
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
osv7.5HIGH
vulncheck7.5HIGH