https://bz.apache.org/bugzilla/show_bug.cgi?id=58337
Bug ID: 58337
Summary: Exception raised during parsing of request parameters
Product: Tomcat 8
Version: trunk
Hardware: PC
OS: Windows NT
Status: NEW
Severity: normal
Priority: P2
Component: Catalina
Assignee: [email protected]
Reporter: [email protected]
When specially crafted parameter is prepended, tomcat fails with exception
shown below.
Parameter is:
?rss=true&1%25}b5dec%27%2f"<ad698=1
java.lang.IllegalArgumentException: [}] is not a hexadecimal digit
at
org.apache.catalina.util.RequestUtil.convertHexDigit(RequestUtil.java:315)
at
org.apache.catalina.util.RequestUtil.parseParameters(RequestUtil.java:399)
at
org.apache.catalina.util.RequestUtil.parseParameters(RequestUtil.java:152)
at
org.apache.catalina.core.ApplicationHttpRequest.mergeParameters(ApplicationHttpRequest.java:915)
at
org.apache.catalina.core.ApplicationHttpRequest.parseParameters(ApplicationHttpRequest.java:777)
at
org.apache.catalina.core.ApplicationHttpRequest.getParameter(ApplicationHttpRequest.java:374)
any page which calls request.getParameter("parameterName") will fail (name of
parameter is not important), because exception is raised due to unparsable
query string.
This additional characters were added by some security scanner. Exception is
raised in an unexpected place, so they test how application behaves.
Expected result:
Tomcat should ignore invalid parameters and return only parameters which were
successfully parsed.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
