[NT] Apache Tomcat Denial of Service (NULL)
From: support@securiteam.comDate: 06/21/02
- Previous message: support@securiteam.com: "[NT] Cumulative Patches for Excel and Word for Windows"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: support@securiteam.com To: list@securiteam.com Date: Fri, 21 Jun 2002 07:06:46 +0200 (CEST)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
When was the last time you checked your server's security?
How about a monthly report?
http://www.AutomatedScanning.com - Know that you're safe.
- - - - - - - - -
Apache Tomcat Denial of Service (NULL)
------------------------------------------------------------------------
SUMMARY
Apache's <http://jakarta.apache.org/> Tomcat has been found to contain a
vulnerability that would allow a malicious user to tie up all 75 working
threads and cause a Denial of Service situation.
DETAILS
Vulnerable systems:
- Apache Tomcat 4.0.3 on Windows 2000 Server
Immune systems:
- Apache Tomcat 4.1.3 beta on Windows 2000 Server
By sending a large amount of null characters to the web service it is
possible to cause a working thread to hang. The default installation has
75 working threads, which means this malformed request has to be sent to
the server 75 times.
Vendor Response:
This was reported to the vendor on the 23rd of May, 2002. We never heard
back from the vendor. On the 10th of June, 2002, the issue was confirmed
fixed in the latest build.
Corrective action:
Upgrade to V4.1.3 beta, which is available here:
<http://jakarta.apache.org/builds/jakarta-tomcat-4.0/release/v4.1.3-beta/>
http://jakarta.apache.org/builds/jakarta-tomcat-4.0/release/v4.1.3-beta/
ADDITIONAL INFORMATION
The information has been provided by <mailto:pgrundl@kpmg.dk> Peter
Gründl.
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com
====================
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
- Previous message: support@securiteam.com: "[NT] Cumulative Patches for Excel and Word for Windows"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
- [TOOL] Web Shell (WSH), Remote UNIX/WIN Shell
... The following security advisory is sent to the securiteam mailing list, and can be found at
the SecuriTeam web site: http://www.securiteam.com ... Latest attack techniques.
... The package contains two perl scripts for server and client hosts: ...
(Securiteam) - [NT] LiteServe Directory Index Cross-Site Scripting
... The following security advisory is sent to the securiteam mailing list, and can be
found at the SecuriTeam web site: http://www.securiteam.com ... Web, email and FTP server.
... This is similar to the Apache XSS of last month. ... (Securiteam) - [NT] Directory Traversal bug in QuickFront Webserver
... The following security advisory is sent to the securiteam mailing list, and can be found at
the SecuriTeam web site: http://www.securiteam.com ... Quickfront "will help you
to capture emails ... directory traversal vulnerability in the product allows remote attackers
... When attacker sends a request to server in the following form: ... (Securiteam) - [NT] Lil HTTP Server "Referer" Cross Site Scripting Vulnerability
... The following security advisory is sent to the securiteam mailing list, and can be found at
the SecuriTeam web site: http://www.securiteam.com ... lightweight web server. ...
into the Referer tag to cause its execution upon the administrator's ... In no event shall
we be liable for any damages whatsoever including direct, indirect, incidental, consequential,
loss of business profits or special damages. ... (Securiteam) - [UNIX] IcrediBB Contains a Cross Site Scripting Vulnerability
... The following security advisory is sent to the securiteam mailing list, and can be found at
the SecuriTeam web site: http://www.securiteam.com ... Vendor has been notified
of all issues discussed. ... This bulletin is sent to members of the SecuriTeam mailing
list. ... In no event shall we be liable for any damages whatsoever including direct, indirect,
incidental, consequential, loss of business profits or special damages. ... (Securiteam)
