CVE-2007-5342
Aliases:GHSA-w65j-cmqc-37p2
Advisory lineage Upstream: 0 Downstream: 8
Modified
Published: 27 Dec 2007, 22:00
Last modified:07 Aug 2024, 15:24
Vulnerability Summary
Overall Risk (default)
medium
29/100 CVSS Score
6.4 MEDIUM
v2.0 (nvd)
EPSS Score
18.12% MEDIUM
18% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
27 Dec 2007, 22:00
Published
Vulnerability first disclosed
07 Aug 2024, 15:24
Last Modified
Vulnerability information updated
Description
The default catalina.policy in the JULI logging component in Apache Tomcat 5.5.9 through 5.5.25 and 6.0.0 through 6.0.15 does not restrict certain permissions for web applications, which allows attackers to modify logging configuration options and overwrite arbitrary files, as demonstrated by changing the (1) level, (2) directory, and (3) prefix attributes in the org.apache.juli.FileHandler handler.
CVSS Metrics
- v2.0•MEDIUM•Score: 6.4AV:N/AC:L/Au:N/C:P/I:P/A:N
EPSS Trends
Current EPSS score: 18.12%• Percentile: 95%
Techniques & Countermeasures
- CWE-264•Permissions, Privileges, and Access Controls
Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.
Affected Systems
- Unknown•Tomcat
5.5.9 | 5.5.10 | 5.5.11 | 5.5.12 | 5.5.13 | 5.5.14 | 5.5.15 | 5.5.16 | 5.5.17 | 5.5.18 | 5.5.19 | 5.5.20 | 5.5.21 | 5.5.22 | 5.5.23 | 5.5.24 | 5.5.25 | 6.0 | 6.0.1 | 6.0.2 | 6.0.3 | 6.0.4 | 6.0.5 | 6.0.6 | 6.0.7 | 6.0.8 | 6.0.9 | 6.0.10 | 6.0.11 | 6.0.12 | 6.0.13 | 6.0.14 | 6.0.15
- org.apache.tomcat•tomcat-juli
≥ 5.5.9, ≤ 5.5.25 | ≥ 6.0.0, ≤ 6.0.15
References (56)
- http://secunia.com/advisories/30676
- http://www.redhat.com/support/errata/RHSA-2008-0862.html
- http://secunia.com/advisories/28915
- http://www.vupen.com/english/advisories/2008/2823
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10417
- http://secunia.com/advisories/37460
- http://secunia.com/advisories/29313
- http://www.securityfocus.com/bid/31681
- http://secunia.com/advisories/32120
- http://www.vmware.com/security/advisories/VMSA-2009-0016.html
- http://www.redhat.com/support/errata/RHSA-2008-0042.html
- http://secunia.com/advisories/28274
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:188
- http://secunia.com/advisories/28317
- http://support.avaya.com/elmodocs2/security/ASA-2008-401.htm
- http://securityreason.com/securityalert/3485
- http://www.securityfocus.com/archive/1/485481/100/0/threaded
- http://www.securityfocus.com/archive/1/507985/100/0/threaded
- http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
- http://tomcat.apache.org/security-6.html
- http://www.redhat.com/support/errata/RHSA-2008-0832.html
- http://secunia.com/advisories/57126
- http://secunia.com/advisories/32222
- http://www.redhat.com/support/errata/RHSA-2008-0195.html
- https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html
- http://security.gentoo.org/glsa/glsa-200804-10.xml
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39201
- http://svn.apache.org/viewvc?view=rev&revision=606594
- http://www.redhat.com/support/errata/RHSA-2008-0833.html
- https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html
- http://www.vupen.com/english/advisories/2008/1856/references
- http://www.vmware.com/security/advisories/VMSA-2008-0010.html
- http://tomcat.apache.org/security-5.html
- http://osvdb.org/39833
- http://www.vupen.com/english/advisories/2008/0013
- http://www.vupen.com/english/advisories/2008/2780
- http://www.redhat.com/support/errata/RHSA-2008-0831.html
- http://www.securityfocus.com/bid/27006
- http://www.redhat.com/support/errata/RHSA-2008-0834.html
- http://www.debian.org/security/2008/dsa-1447
- http://marc.info/?l=bugtraq&m=139344343412337&w=2
- http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
- http://support.apple.com/kb/HT3216
- http://secunia.com/advisories/29711
- http://www.vupen.com/english/advisories/2009/3316
- http://secunia.com/advisories/32266
- https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E
- https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E
- https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E
- https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E
- https://nvd.nist.gov/vuln/detail/CVE-2007-5342
- https://github.com/apache/tomcat/tree/main/java/org/apache/juli
- https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E
- https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E
- https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E
- https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E