Apache Tomcat Multiple Vulnerabilities

Last Update Date: 28 Oct 2016 10:57 Release Date: 28 Oct 2016 3544 Views

RISK: Medium Risk

TYPE: Servers - Web Servers

TYPE: Web Servers

Multiple vulnerabilties were identified in Apache Tomcat, exploitation of these vulnerabilities may lead to several impacts.

Impact

Denial of Service
Security Restriction Bypass
Information Disclosure

System / Technologies affected

Apache Tomcat 9.0.0.M1 to 9.0.0.M9
Apache Tomcat 8.5.0 to 8.5.4
Apache Tomcat 8.0.0.RC1 to 8.0.36
Apache Tomcat 7.0.0 to 7.0.70
Apache Tomcat 6.0.0 to 6.0.45
Earlier, unsupported versions may also be affected.

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Update to version 9.0.0.M10, 8.5.5, 8.0.37, 7.0.72, 6.0.47 or later, respectively
http://tomcat.apache.org/security-9.html
http://tomcat.apache.org/security-8.html
http://tomcat.apache.org/security-7.html
http://tomcat.apache.org/security-6.html

Vulnerability Identifier

Source

Related Link

https://www.auscert.org.au/render.html?it=40038

Share with

iTunes and iCloud for Windows Multiple Vulnerabilities

28 Oct 2016 3492 Views

Apple IOS multiple vulnerabilities

1 Nov 2016 3491 Views