| VID |
22763 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
According to its self-reported version number, the Apache Tomcat service running on the remote host is version 8.5.x prior to 8.5.9. It is, therefore, affected by an information disclosure vulnerability in error handling during send file processing by the NIO HTTP connector, in which an error can cause the current Processor object to be added to the Processor cache multiple times. This allows the same Processor to be used for concurrent requests. An unauthenticated, remote attacker can exploit this issue, via a shared Processor, to disclose sensitive information, such as session IDs, response bodies related to another request, etc.
* Note: This check solely relied on the version number of the remote Web server to assess this vulnerability, so this might be a false positive.
* References:
https://tomcat.apache.org/security-8.html#Fixed_in_Apache_Tomcat_8.5.9
* Platforms Affected:
Apache Tomcat Server versions prior to 8.5.9
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of Apache Tomcat Server (8.5.9 or later), available from the Apache Software Foundation download site, http://tomcat.apache.org/ |
| Related URL |
CVE-2016-8745 (CVE) |
| Related URL |
94828 (SecurityFocus) |
| Related URL |
(ISS) |
|
