CVE-2007-5461 (CNNVD-200710-294)
LOW
有利用代码
中文标题:
Apache Tomcat WebDav远程信息泄露漏洞
英文标题:
Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 thro...
CVSS分数:
3.5
发布时间:
2007-10-15 18:00:00
漏洞类型:
路径遍历
状态:
PUBLISHED
数据质量分数:
0.40
数据版本:
v5
漏洞描述
中文描述:
Apache Tomcat是一个流行的开放源码的JSP应用服务器程序。 如果将Apache Tomcat的WebDAV servlet配置为同上下文使用且允许写访问的话,则远程攻击者可以通过提交指定了SYSTEM标签的WebDAV请求导致泄露任意文件的内容。
英文描述:
Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.
CWE类型:
CWE-22
标签:
remote
multiple
eliteboy
OSVDB-38187
linux
h3rcul3s
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| apache | tomcat | 4.0.0 | - | - |
cpe:2.3:a:apache:tomcat:4.0.0:*:*:*:*:*:*:*
|
| apache | tomcat | 4.0.1 | - | - |
cpe:2.3:a:apache:tomcat:4.0.1:*:*:*:*:*:*:*
|
| apache | tomcat | 4.0.2 | - | - |
cpe:2.3:a:apache:tomcat:4.0.2:*:*:*:*:*:*:*
|
| apache | tomcat | 4.0.3 | - | - |
cpe:2.3:a:apache:tomcat:4.0.3:*:*:*:*:*:*:*
|
| apache | tomcat | 4.0.4 | - | - |
cpe:2.3:a:apache:tomcat:4.0.4:*:*:*:*:*:*:*
|
| apache | tomcat | 4.0.5 | - | - |
cpe:2.3:a:apache:tomcat:4.0.5:*:*:*:*:*:*:*
|
| apache | tomcat | 4.0.6 | - | - |
cpe:2.3:a:apache:tomcat:4.0.6:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.0 | - | - |
cpe:2.3:a:apache:tomcat:4.1.0:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.1 | - | - |
cpe:2.3:a:apache:tomcat:4.1.1:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.2 | - | - |
cpe:2.3:a:apache:tomcat:4.1.2:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.3 | - | - |
cpe:2.3:a:apache:tomcat:4.1.3:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.4 | - | - |
cpe:2.3:a:apache:tomcat:4.1.4:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.5 | - | - |
cpe:2.3:a:apache:tomcat:4.1.5:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.6 | - | - |
cpe:2.3:a:apache:tomcat:4.1.6:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.7 | - | - |
cpe:2.3:a:apache:tomcat:4.1.7:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.8 | - | - |
cpe:2.3:a:apache:tomcat:4.1.8:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.9 | - | - |
cpe:2.3:a:apache:tomcat:4.1.9:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.10 | - | - |
cpe:2.3:a:apache:tomcat:4.1.10:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.11 | - | - |
cpe:2.3:a:apache:tomcat:4.1.11:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.12 | - | - |
cpe:2.3:a:apache:tomcat:4.1.12:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.13 | - | - |
cpe:2.3:a:apache:tomcat:4.1.13:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.14 | - | - |
cpe:2.3:a:apache:tomcat:4.1.14:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.15 | - | - |
cpe:2.3:a:apache:tomcat:4.1.15:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.16 | - | - |
cpe:2.3:a:apache:tomcat:4.1.16:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.17 | - | - |
cpe:2.3:a:apache:tomcat:4.1.17:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.18 | - | - |
cpe:2.3:a:apache:tomcat:4.1.18:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.19 | - | - |
cpe:2.3:a:apache:tomcat:4.1.19:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.20 | - | - |
cpe:2.3:a:apache:tomcat:4.1.20:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.21 | - | - |
cpe:2.3:a:apache:tomcat:4.1.21:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.22 | - | - |
cpe:2.3:a:apache:tomcat:4.1.22:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.23 | - | - |
cpe:2.3:a:apache:tomcat:4.1.23:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.24 | - | - |
cpe:2.3:a:apache:tomcat:4.1.24:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.25 | - | - |
cpe:2.3:a:apache:tomcat:4.1.25:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.26 | - | - |
cpe:2.3:a:apache:tomcat:4.1.26:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.27 | - | - |
cpe:2.3:a:apache:tomcat:4.1.27:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.28 | - | - |
cpe:2.3:a:apache:tomcat:4.1.28:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.29 | - | - |
cpe:2.3:a:apache:tomcat:4.1.29:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.30 | - | - |
cpe:2.3:a:apache:tomcat:4.1.30:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.31 | - | - |
cpe:2.3:a:apache:tomcat:4.1.31:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.32 | - | - |
cpe:2.3:a:apache:tomcat:4.1.32:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.33 | - | - |
cpe:2.3:a:apache:tomcat:4.1.33:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.34 | - | - |
cpe:2.3:a:apache:tomcat:4.1.34:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.35 | - | - |
cpe:2.3:a:apache:tomcat:4.1.35:*:*:*:*:*:*:*
|
| apache | tomcat | 4.1.36 | - | - |
cpe:2.3:a:apache:tomcat:4.1.36:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
(暂无数据)
英文解决方案:
(暂无数据)
临时解决方案:
(暂无数据)
参考链接
DSA-1453
vendor-advisory
cve.org
访问
cve.org
无标题
x_refsource_CONFIRM
cve.org
访问
cve.org
30908
third-party-advisory
cve.org
访问
cve.org
无标题
x_refsource_CONFIRM
cve.org
访问
cve.org
[tomcat-users] 20071015 [Security] - Important vulnerability disclosed in Apache Tomcat webdav servlet
mailing-list
cve.org
访问
cve.org
26070
vdb-entry
cve.org
访问
cve.org
27446
third-party-advisory
cve.org
访问
cve.org
20071014 Apache Tomcat Rem0Te FiLe DiscloSure ZeroDay
mailing-list
cve.org
访问
cve.org
30676
third-party-advisory
cve.org
访问
cve.org
RHSA-2008:0630
vendor-advisory
cve.org
访问
cve.org
239312
vendor-advisory
cve.org
访问
cve.org
apache-tomcat-webdav-dir-traversal(37243)
vdb-entry
cve.org
访问
cve.org
oval:org.mitre.oval:def:9202
vdb-entry
cve.org
访问
cve.org
RHSA-2008:0862
vendor-advisory
cve.org
访问
cve.org
ADV-2008-1981
vdb-entry
cve.org
访问
cve.org
30899
third-party-advisory
cve.org
访问
cve.org
FEDORA-2007-3456
vendor-advisory
cve.org
访问
cve.org
31493
third-party-advisory
cve.org
访问
cve.org
29242
third-party-advisory
cve.org
访问
cve.org
ADV-2008-2823
vdb-entry
cve.org
访问
cve.org
37460
third-party-advisory
cve.org
访问
cve.org
ADV-2008-1979
vdb-entry
cve.org
访问
cve.org
29313
third-party-advisory
cve.org
访问
cve.org
31681
vdb-entry
cve.org
访问
cve.org
32120
third-party-advisory
cve.org
访问
cve.org
ADV-2007-3671
vdb-entry
cve.org
访问
cve.org
无标题
x_refsource_CONFIRM
cve.org
访问
cve.org
27398
third-party-advisory
cve.org
访问
cve.org
RHSA-2008:0042
vendor-advisory
cve.org
访问
cve.org
SUSE-SR:2008:005
vendor-advisory
cve.org
访问
cve.org
1018864
vdb-entry
cve.org
访问
cve.org
28361
third-party-advisory
cve.org
访问
cve.org
28317
third-party-advisory
cve.org
访问
cve.org
APPLE-SA-2008-06-30
vendor-advisory
cve.org
访问
cve.org
无标题
x_refsource_CONFIRM
cve.org
访问
cve.org
ADV-2007-3674
vdb-entry
cve.org
访问
cve.org
20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components
mailing-list
cve.org
访问
cve.org
SUSE-SR:2009:004
vendor-advisory
cve.org
访问
cve.org
无标题
x_refsource_CONFIRM
cve.org
访问
cve.org
57126
third-party-advisory
cve.org
访问
cve.org
32222
third-party-advisory
cve.org
访问
cve.org
30802
third-party-advisory
cve.org
访问
cve.org
RHSA-2008:0195
vendor-advisory
cve.org
访问
cve.org
GLSA-200804-10
vendor-advisory
cve.org
访问
cve.org
无标题
x_refsource_CONFIRM
cve.org
访问
cve.org
ADV-2007-3622
vdb-entry
cve.org
访问
cve.org
无标题
x_refsource_CONFIRM
cve.org
访问
cve.org
27727
third-party-advisory
cve.org
访问
cve.org
ADV-2008-1856
vdb-entry
cve.org
访问
cve.org
无标题
x_refsource_CONFIRM
cve.org
访问
cve.org
无标题
x_refsource_CONFIRM
cve.org
访问
cve.org
ADV-2008-2780
vdb-entry
cve.org
访问
cve.org
RHSA-2008:0261
vendor-advisory
cve.org
访问
cve.org
4530
exploit
cve.org
访问
cve.org
MDVSA-2009:136
vendor-advisory
cve.org
访问
cve.org
DSA-1447
vendor-advisory
cve.org
访问
cve.org
27481
third-party-advisory
cve.org
访问
cve.org
HPSBST02955
vendor-advisory
cve.org
访问
cve.org
APPLE-SA-2008-10-09
vendor-advisory
cve.org
访问
cve.org
无标题
x_refsource_CONFIRM
cve.org
访问
cve.org
MDKSA-2007:241
vendor-advisory
cve.org
访问
cve.org
29711
third-party-advisory
cve.org
访问
cve.org
无标题
x_refsource_MISC
cve.org
访问
cve.org
ADV-2009-3316
vdb-entry
cve.org
访问
cve.org
32266
third-party-advisory
cve.org
访问
cve.org
[tomcat-dev] 20190319 svn commit: r1855831 [21/30] - in /tomcat/site/trunk: ./ docs/ xdocs/
mailing-list
cve.org
访问
cve.org
[tomcat-dev] 20190319 svn commit: r1855831 [22/30] - in /tomcat/site/trunk: ./ docs/ xdocs/
mailing-list
cve.org
访问
cve.org
[tomcat-dev] 20190325 svn commit: r1856174 [19/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/
mailing-list
cve.org
访问
cve.org
[tomcat-dev] 20190325 svn commit: r1856174 [20/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/
mailing-list
cve.org
访问
cve.org
[tomcat-dev] 20200203 svn commit: r1873527 [22/30] - /tomcat/site/trunk/docs/
mailing-list
cve.org
访问
cve.org
[tomcat-dev] 20200213 svn commit: r1873980 [24/34] - /tomcat/site/trunk/docs/
mailing-list
cve.org
访问
cve.org
[tomcat-dev] 20200213 svn commit: r1873980 [25/34] - /tomcat/site/trunk/docs/
mailing-list
cve.org
访问
cve.org
Download Exploit EDB-4530
EXPLOIT
exploitdb
访问
exploitdb
CVE Reference: CVE-2007-5461
ADVISORY
cve.org
访问
cve.org
ExploitDB EDB-4552
EXPLOIT
exploitdb
访问
exploitdb
Download Exploit EDB-4552
EXPLOIT
exploitdb
访问
exploitdb
CVSS评分详情
3.5
LOW
CVSS向量:
AV:N/AC:M/Au:S/C:P/I:N/A:N
CVSS版本:
2.0
机密性
PARTIAL
完整性
NONE
可用性
NONE
时间信息
发布时间:
2007-10-15 18:00:00
修改时间:
2024-08-07 15:31:58
创建时间:
2025-11-11 15:32:47
更新时间:
2026-01-26 02:18:00
利用信息
此漏洞有可利用代码!
利用代码数量:
2
利用来源:
未知
未知
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2007-5461 |
2025-11-11 15:17:56 | 2025-11-11 07:32:47 |
| NVD | nvd_CVE-2007-5461 |
2025-11-11 14:52:12 | 2025-11-11 07:41:33 |
| CNNVD | cnnvd_CNNVD-200710-294 |
2025-11-11 15:08:56 | 2025-11-11 07:49:21 |
| EXPLOITDB | exploitdb_EDB-4530 |
2025-11-11 15:05:28 | 2025-11-11 08:48:20 |
| EXPLOITDB | exploitdb_EDB-4552 |
2025-11-11 15:05:25 | 2025-11-11 08:48:44 |
版本与语言
当前版本:
v5
主要语言:
EN
支持语言:
EN
ZH
其他标识符:
:
:
:
:
安全公告
暂无安全公告信息
变更历史
v5
EXPLOITDB
2025-11-11 16:48:44
references_count: 74 → 76; tags_count: 4 → 6
查看详细变更
- references_count: 74 -> 76
- tags_count: 4 -> 6
v4
EXPLOITDB
2025-11-11 16:48:20
references_count: 72 → 74; tags_count: 0 → 4; data_sources: ['cnnvd', 'cve', 'nvd'] → ['cnnvd', 'cve', 'exploitdb', 'nvd']
查看详细变更
- references_count: 72 -> 74
- tags_count: 0 -> 4
- data_sources: ['cnnvd', 'cve', 'nvd'] -> ['cnnvd', 'cve', 'exploitdb', 'nvd']
v3
CNNVD
2025-11-11 15:49:21
vulnerability_type: 未提取 → 路径遍历; cnnvd_id: 未提取 → CNNVD-200710-294; data_sources: ['cve', 'nvd'] → ['cnnvd', 'cve', 'nvd']
查看详细变更
- vulnerability_type: 未提取 -> 路径遍历
- cnnvd_id: 未提取 -> CNNVD-200710-294
- data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
v2
NVD
2025-11-11 15:41:33
severity: SeverityLevel.MEDIUM → SeverityLevel.LOW; cvss_score: 未提取 → 3.5; cvss_vector: NOT_EXTRACTED → AV:N/AC:M/Au:S/C:P/I:N/A:N; cvss_version: NOT_EXTRACTED → 2.0; affected_products_count: 0 → 44; data_sources: ['cve'] → ['cve', 'nvd']
查看详细变更
- severity: SeverityLevel.MEDIUM -> SeverityLevel.LOW
- cvss_score: 未提取 -> 3.5
- cvss_vector: NOT_EXTRACTED -> AV:N/AC:M/Au:S/C:P/I:N/A:N
- cvss_version: NOT_EXTRACTED -> 2.0
- affected_products_count: 0 -> 44
- data_sources: ['cve'] -> ['cve', 'nvd']