CVE-2005-3510
CVSS5.0
发布时间 :2005-11-06 06:02:00
修订时间 :2011-03-07 21:26:37
NMCOP    

[原文]Apache Tomcat 5.5.0 to 5.5.11 allows remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous requests to list a web directory that has a large number of files.


[CNNVD]Apache Tomcat目录列表拒绝服务漏洞(CNNVD-200511-135)

        Apache Tomcat是一个流行的开放源码的JSP应用服务器程序。Apache Tomcat在为包含有很多文件的web目录生成目录列表时存在拒绝服务漏洞。攻击者可以向上述目录发送大量并发请求,这样其他用户就无法再访问目录,导致服务器消耗大量CPU资源。这个漏洞仅影响正在列出的目录。其他Web目录中的文件或应用程序不受影响。

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: NONE [对系统的机密性无影响]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: PARTIAL [可能会导致性能下降或中断资源访问]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/a:apache:tomcat:5.5.2Apache Software Foundation Tomcat 5.5.2
cpe:/a:apache:tomcat:5.5.3Apache Software Foundation Tomcat 5.5.3
cpe:/a:apache:tomcat:5.5.7Apache Software Foundation Tomcat 5.5.7
cpe:/a:apache:tomcat:5.5.4Apache Software Foundation Tomcat 5.5.4
cpe:/a:apache:tomcat:5.5.11Apache Software Foundation Tomcat 5.5.11
cpe:/a:apache:tomcat:5.5.10Apache Software Foundation Tomcat 5.5.10
cpe:/a:apache:tomcat:5.5.9Apache Software Foundation Tomcat 5.5.9
cpe:/a:apache:tomcat:5.5.1Apache Software Foundation Tomcat 5.5.1
cpe:/a:apache:tomcat:5.5.5Apache Software Foundation Tomcat 5.5.5
cpe:/a:apache:tomcat:5.5.0Apache Software Foundation Tomcat 5.5.0
cpe:/a:apache:tomcat:5.5.8Apache Software Foundation Tomcat 5.5.8
cpe:/a:apache:tomcat:5.5.6Apache Software Foundation Tomcat 5.5.6

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3510
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-3510
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200511-135
(官方数据源) CNNVD

- 其它链接及资源

http://www.securityfocus.com/archive/1/archive/1/415782/30/0/threaded
(VENDOR_ADVISORY)  BUGTRAQ  20051104 Apache Tomcat 5.5.x remote Denial Of Service
http://securitytracker.com/id?1015147
(VENDOR_ADVISORY)  SECTRACK  1015147
http://www.vupen.com/english/advisories/2009/0233
(UNKNOWN)  VUPEN  ADV-2009-0233
http://www.vupen.com/english/advisories/2008/1979/references
(UNKNOWN)  VUPEN  ADV-2008-1979
http://www.securityfocus.com/bid/15325
(UNKNOWN)  BID  15325
http://www.securityfocus.com/archive/1/archive/1/500412/100/0/threaded
(UNKNOWN)  BUGTRAQ  20090127 CA20090123-01: Cohesion Tomcat Multiple Vulnerabilities (Updated - v1.1)
http://www.securityfocus.com/archive/1/archive/1/500396/100/0/threaded
(UNKNOWN)  BUGTRAQ  20090124 CA20090123-01: Cohesion Tomcat Multiple Vulnerabilities
http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197540
(UNKNOWN)  CONFIRM  http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197540
http://secunia.com/advisories/33668
(UNKNOWN)  SECUNIA  33668
http://secunia.com/advisories/17416
(VENDOR_ADVISORY)  SECUNIA  17416
http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx
(UNKNOWN)  CONFIRM  http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx
http://www.redhat.com/support/errata/RHSA-2008-0261.html
(UNKNOWN)  REDHAT  RHSA-2008:0261
http://www.redhat.com/support/errata/RHSA-2006-0161.html
(UNKNOWN)  REDHAT  RHSA-2006:0161
http://www.osvdb.org/20439
(UNKNOWN)  OSVDB  20439
http://tomcat.apache.org/security-5.html
(UNKNOWN)  CONFIRM  http://tomcat.apache.org/security-5.html
http://tomcat.apache.org/security-4.html
(UNKNOWN)  CONFIRM  http://tomcat.apache.org/security-4.html
http://sunsolve.sun.com/search/document.do?assetkey=1-26-239312-1
(UNKNOWN)  SUNALERT  239312
http://secunia.com/advisories/30908
(UNKNOWN)  SECUNIA  30908
http://secunia.com/advisories/30899
(UNKNOWN)  SECUNIA  30899

- 漏洞信息

Apache Tomcat目录列表拒绝服务漏洞
中危 其他
2005-11-06 00:00:00 2009-02-05 00:00:00
远程  
        Apache Tomcat是一个流行的开放源码的JSP应用服务器程序。Apache Tomcat在为包含有很多文件的web目录生成目录列表时存在拒绝服务漏洞。攻击者可以向上述目录发送大量并发请求,这样其他用户就无法再访问目录,导致服务器消耗大量CPU资源。这个漏洞仅影响正在列出的目录。其他Web目录中的文件或应用程序不受影响。

- 公告与补丁

        目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:
        http://jakarta.apache.org/tomcat/index.html

- 漏洞信息 (F74289)

CA20090123-01.txt (PacketStormID:F74289)
2009-01-27 00:00:00
Ken Williams  www3.ca.com
advisory,arbitrary
CVE-2005-2090,CVE-2005-3510,CVE-2006-3835,CVE-2006-7195,CVE-2006-7196,CVE-2007-0450,CVE-2007-1355,CVE-2007-1358,CVE-2007-1858,CVE-2007-2449,CVE-2007-2450,CVE-2007-3382,CVE-2007-3385,CVE-2007-3386,CVE-2008-0128
[点击下载]

Multiple security risks exist in Apache Tomcat as included with CA Cohesion and products that contain CA Cohesion. These include, but are not limited to, arbitrary command execution. Affected products include CA Cohesion Application Configuration Manager 4.5, CA CMDB Application Server 11.1, and Unicenter Service Desk 11.2.

Title: CA20090123-01: Cohesion Tomcat Multiple Vulnerabilities


CA Advisory Reference: CA20090123-01


CA Advisory Date: 2009-01-23


Reported By: n/a


Impact: Refer to the CVE identifiers for details.


Summary: Multiple security risks exist in Apache Tomcat as 
included with CA Cohesion Application Configuration Manager. CA 
has issued an update to address the vulnerabilities. Refer to the 
References section for the full list of resolved issues by CVE 
identifier.


Mitigating Factors: None


Severity: CA has given these vulnerabilities a Medium risk rating.


Affected Products:
CA Cohesion Application Configuration Manager 4.5


Non-Affected Products
CA Cohesion Application Configuration Manager 4.5 SP1


Affected Platforms:
Windows


Status and Recommendation:
CA has issued the following update to address the vulnerabilities.

CA Cohesion Application Configuration Manager 4.5:

RO04648
https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=search
&searchID=RO04648


How to determine if you are affected:

1. Using Windows Explorer, locate the file "RELEASE-NOTES".
2. By default, the file is located in the 
   "C:\Program Files\CA\Cohesion\Server\server\" directory.
3. Open the file with a text editor.
4. If the version is less than 5.5.25, the installation is 
   vulnerable.


Workaround: None


References (URLs may wrap):
CA Support:
http://support.ca.com/
CA20090123-01: Security Notice for Cohesion Tomcat
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=1975
40
Solution Document Reference APARs:
RO04648
CA Security Response Blog posting:
CA20090123-01: Cohesion Tomcat Multiple Vulnerabilities
community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx
Reported By: 
n/a
CVE References:
CVE-2005-2090
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2090
CVE-2005-3510
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3510
CVE-2006-3835
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3835
CVE-2006-7195
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-7195
CVE-2006-7196
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-7196
CVE-2007-0450
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0450
CVE-2007-1355
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1355
CVE-2007-1358
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1358
CVE-2007-1858
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1858
CVE-2007-2449
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2449
CVE-2007-2450
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2450
CVE-2007-3382
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3382
CVE-2007-3385 *
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3385
CVE-2007-3386
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3386
CVE-2008-0128
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0128
*Note: the issue was not completely fixed by Tomcat maintainers.
OSVDB References: Pending
http://osvdb.org/


Changelog for this advisory:
v1.0 - Initial Release
v1.1 - Updated Impact, Summary, Affected Products


Customers who require additional information should contact CA
Technical Support at http://support.ca.com.

For technical questions or comments related to this advisory, 
please send email to vuln AT ca DOT com.

If you discover a vulnerability in CA products, please report your 
findings to the CA Product Vulnerability Response Team.
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=1777
82


Regards,
Ken Williams, Director ; 0xE2941985
CA Product Vulnerability Response Team


CA, 1 CA Plaza, Islandia, NY 11749
	
Contact http://www.ca.com/us/contact/
Legal Notice http://www.ca.com/us/legal/
Privacy Policy http://www.ca.com/us/privacy/
Copyright (c) 2009 CA. All rights reserved.
    

- 漏洞信息

20439
Apache Tomcat Directory Listing Saturation DoS
Remote / Network Access Denial of Service
Loss of Availability
Exploit Public Vendor Verified

- 漏洞描述

Apache Tomcat contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker makes multiple concurrent requests for a directory listing that contain a large number of files. With a large number of requests, an attacker can cause the server to stop processing subsequent requests.

- 时间线

2005-11-03 Unknow
2005-11-03 Unknow

- 解决方案

Upgrade to version 5.5.12 or higher, as it has been reported to partially fix this vulnerability by allowing operations to resume after a few minutes. It is also possible to correct the flaw by implementing the following workaround(s): -Disable directory listing for web directories that has a large number of files.

- 相关参考

- 漏洞作者

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站