*** This bug is a security vulnerability ***
Public security bug reported:
CVE-2008-2370
When using a RequestDispatcher the target path was normalised before the query
string was removed. A request that included a specially crafted request
parameter could be used to access content that would otherwise be protected by
a security constraint or by locating it in under the WEB-INF directory.
Affects: 6.0.0-6.0.16, 5.5.0-5.5.26
** Affects: tomcat5.5 (Ubuntu)
Importance: Undecided
Status: New
** Affects: tomcat6 (Ubuntu)
Importance: Undecided
Status: New
** Affects: tomcat5.5 (Debian)
Importance: Unknown
Status: Unknown
** Visibility changed to: Public
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2008-2370
** Also affects: tomcat5.5 (Ubuntu)
Importance: Undecided
Status: New
** Bug watch added: Debian Bug tracker #494504
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494504
** Also affects: tomcat5.5 (Debian) via
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494504
Importance: Unknown
Status: Unknown
--
Information disclosure vulnerability (CVE-2008-2370)
https://bugs.launchpad.net/bugs/256922
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
