Vulnerability-Lookup

CVE-2002-1394 (GCVE-0-2002-1394)

Vulnerability from cvelistv5 – Published: 2004-09-01 04:00 – Updated: 2024-08-08 03:19

Summary

Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148.

Severity

No CVSS data available.

CWE

Assigner

mitre

References

11 references

URL	Tags
http://marc.info/?l=bugtraq&m=103470282514938&w=2	vendor-advisoryx_refsource_GENTOO
http://marc.info/?l=tomcat-dev&m=103417249325526&w=2	x_refsource_CONFIRM
http://www.debian.org/security/2003/dsa-225	vendor-advisoryx_refsource_DEBIAN
http://www.redhat.com/support/errata/RHSA-2003-075.html	vendor-advisoryx_refsource_REDHAT
http://www.securityfocus.com/bid/6562	vdb-entryx_refsource_BID
http://issues.apache.org/bugzilla/show_bug.cgi?id=13365	x_refsource_CONFIRM
http://www.redhat.com/support/errata/RHSA-2003-082.html	vendor-advisoryx_refsource_REDHAT
https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
https://lists.apache.org/thread.html/29dc6c2b6257…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/c62b0e3a7bf2…	mailing-listx_refsource_MLIST
https://lists.apache.org/thread.html/rb71997f506c…	mailing-listx_refsource_MLIST

Date Public

2002-10-15 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T03:19:28.888Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "GLSA-200210-001",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=103470282514938\u0026w=2"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2"
          },
          {
            "name": "DSA-225",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2003/dsa-225"
          },
          {
            "name": "RHSA-2003:075",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2003-075.html"
          },
          {
            "name": "6562",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/6562"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://issues.apache.org/bugzilla/show_bug.cgi?id=13365"
          },
          {
            "name": "RHSA-2003:082",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2003-082.html"
          },
          {
            "name": "tomcat-invoker-source-code(10376)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10376"
          },
          {
            "name": "[tomcat-dev] 20190319 svn commit: r1855831 [21/30] - in /tomcat/site/trunk: ./ docs/ xdocs/",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-dev] 20190325 svn commit: r1856174 [19/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-dev] 20200213 svn commit: r1873980 [24/34] - /tomcat/site/trunk/docs/",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2002-10-15T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-02-13T16:07:19.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "GLSA-200210-001",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=103470282514938\u0026w=2"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2"
        },
        {
          "name": "DSA-225",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2003/dsa-225"
        },
        {
          "name": "RHSA-2003:075",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2003-075.html"
        },
        {
          "name": "6562",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/6562"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://issues.apache.org/bugzilla/show_bug.cgi?id=13365"
        },
        {
          "name": "RHSA-2003:082",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2003-082.html"
        },
        {
          "name": "tomcat-invoker-source-code(10376)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10376"
        },
        {
          "name": "[tomcat-dev] 20190319 svn commit: r1855831 [21/30] - in /tomcat/site/trunk: ./ docs/ xdocs/",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-dev] 20190325 svn commit: r1856174 [19/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E"
        },
        {
          "name": "[tomcat-dev] 20200213 svn commit: r1873980 [24/34] - /tomcat/site/trunk/docs/",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2002-1394",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "GLSA-200210-001",
              "refsource": "GENTOO",
              "url": "http://marc.info/?l=bugtraq\u0026m=103470282514938\u0026w=2"
            },
            {
              "name": "http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2",
              "refsource": "CONFIRM",
              "url": "http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2"
            },
            {
              "name": "DSA-225",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2003/dsa-225"
            },
            {
              "name": "RHSA-2003:075",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2003-075.html"
            },
            {
              "name": "6562",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/6562"
            },
            {
              "name": "http://issues.apache.org/bugzilla/show_bug.cgi?id=13365",
              "refsource": "CONFIRM",
              "url": "http://issues.apache.org/bugzilla/show_bug.cgi?id=13365"
            },
            {
              "name": "RHSA-2003:082",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2003-082.html"
            },
            {
              "name": "tomcat-invoker-source-code(10376)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10376"
            },
            {
              "name": "[tomcat-dev] 20190319 svn commit: r1855831 [21/30] - in /tomcat/site/trunk: ./ docs/ xdocs/",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-dev] 20190325 svn commit: r1856174 [19/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-dev] 20200213 svn commit: r1873980 [24/34] - /tomcat/site/trunk/docs/",
              "refsource": "MLIST",
              "url": "https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2002-1394",
    "datePublished": "2004-09-01T04:00:00.000Z",
    "dateReserved": "2003-01-06T00:00:00.000Z",
    "dateUpdated": "2024-08-08T03:19:28.888Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2002-1394",
      "date": "2026-05-27",
      "epss": "0.05353",
      "percentile": "0.90183"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:tomcat:4.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"914E1404-01A2-4F94-AA40-D5EA20F55AD3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:tomcat:4.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"81FB1106-B26D-45BE-A511-8E69131BBA52\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:tomcat:4.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"401A213A-FED3-49C0-B823-2E02EA528905\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:tomcat:4.0.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0BFE5AD8-DB14-4632-9D2A-F2013579CA7D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:tomcat:4.0.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7641278D-3B8B-4CD2-B284-2047B65514A2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:tomcat:4.0.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BB7B9911-E836-4A96-A0E8-D13C957EC0EE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:tomcat:4.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0E300013-0CE7-4313-A553-74A6A247B3E9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:tomcat:4.1.3:beta:*:*:*:*:*:*\", \"matchCriteriaId\": \"B7E52BE7-5281-4430-8846-E41CF34FC214\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:tomcat:4.1.9:beta:*:*:*:*:*:*\", \"matchCriteriaId\": \"CBDA8066-294D-431E-B026-C03707DFBCD5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apache:tomcat:4.1.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C92F3744-C8F9-4E29-BF1A-25E03A32F2C0\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148.\"}, {\"lang\": \"es\", \"value\": \"Apache Tomcat 4.0.5 y anteriores, cuando usando el servlet invocador y el servlet por defecto, permite a atacantes remotos leer c\\u00f3digo fuente de ficheros del servidor o evadir ciertas protecciones, una variante de CAN-2002-1148\"}]",
      "id": "CVE-2002-1394",
      "lastModified": "2024-11-20T23:41:12.307",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 7.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": true, \"userInteractionRequired\": false}]}",
      "published": "2003-01-17T05:00:00.000",
      "references": "[{\"url\": \"http://issues.apache.org/bugzilla/show_bug.cgi?id=13365\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=103470282514938\u0026w=2\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.debian.org/security/2003/dsa-225\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2003-075.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2003-082.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/6562\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/10376\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://issues.apache.org/bugzilla/show_bug.cgi?id=13365\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=103470282514938\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.debian.org/security/2003/dsa-225\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2003-075.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2003-082.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/6562\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/10376\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2002-1394\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2003-01-17T05:00:00.000\",\"lastModified\":\"2026-04-16T00:27:16.627\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148.\"},{\"lang\":\"es\",\"value\":\"Apache Tomcat 4.0.5 y anteriores, cuando usando el servlet invocador y el servlet por defecto, permite a atacantes remotos leer c\u00f3digo fuente de ficheros del servidor o evadir ciertas protecciones, una variante de CAN-2002-1148\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":true,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:4.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"914E1404-01A2-4F94-AA40-D5EA20F55AD3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:4.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"81FB1106-B26D-45BE-A511-8E69131BBA52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:4.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"401A213A-FED3-49C0-B823-2E02EA528905\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:4.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0BFE5AD8-DB14-4632-9D2A-F2013579CA7D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:4.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7641278D-3B8B-4CD2-B284-2047B65514A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:4.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB7B9911-E836-4A96-A0E8-D13C957EC0EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:4.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E300013-0CE7-4313-A553-74A6A247B3E9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:4.1.3:beta:*:*:*:*:*:*\",\"matchCriteriaId\":\"B7E52BE7-5281-4430-8846-E41CF34FC214\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:4.1.9:beta:*:*:*:*:*:*\",\"matchCriteriaId\":\"CBDA8066-294D-431E-B026-C03707DFBCD5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:4.1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C92F3744-C8F9-4E29-BF1A-25E03A32F2C0\"}]}]}],\"references\":[{\"url\":\"http://issues.apache.org/bugzilla/show_bug.cgi?id=13365\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=103470282514938\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2003/dsa-225\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2003-075.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2003-082.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/6562\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/10376\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://issues.apache.org/bugzilla/show_bug.cgi?id=13365\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=103470282514938\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2003/dsa-225\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2003-075.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2003-082.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/6562\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/10376\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

CERTA-2008-AVI-349

Vulnerability from certfr_avis - Published: - Updated:

Plusieurs vulnérabilités de Sun Solaris permettent à une personne malintentionnée d'effectuer, entre autres, un déni de service à distance.

Description

De multiples vulnérabilités non documentées du serveur Tomcat de Sun Solaris permettent à une personne malveillante d'effectuer un déni de service à distance, un courtournement de la politique de sécurité, une atteinte à la confidentialité des données ou une injection de code indirecte.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	N/A	N/A	Sun Solaris 10.
	N/A	N/A	Sun Solaris 9 ;

References

Title

Publication Time

CERTA-2008-AVI-349

Vulnerability from certfr_avis - Published: - Updated:

Plusieurs vulnérabilités de Sun Solaris permettent à une personne malintentionnée d'effectuer, entre autres, un déni de service à distance.

Description

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	N/A	N/A	Sun Solaris 10.
	N/A	N/A	Sun Solaris 9 ;

References

Title

Publication Time

FKIE_CVE-2002-1394

Vulnerability from fkie_nvd - Published: 2003-01-17 05:00 - Updated: 2026-04-16 00:27

Severity

Summary

References

	URL	Tags
	cve@mitre.org	http://issues.apache.org/bugzilla/show_bug.cgi?id=13365
	cve@mitre.org	http://marc.info/?l=bugtraq&m=103470282514938&w=2
	cve@mitre.org	http://marc.info/?l=tomcat-dev&m=103417249325526&w=2
	cve@mitre.org	http://www.debian.org/security/2003/dsa-225
	cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2003-075.html
	cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2003-082.html
	cve@mitre.org	http://www.securityfocus.com/bid/6562
	cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/10376
	cve@mitre.org	https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E
	cve@mitre.org	https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E
	cve@mitre.org	https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E
	af854a3a-2127-422b-91ae-364da2661108	http://issues.apache.org/bugzilla/show_bug.cgi?id=13365
	af854a3a-2127-422b-91ae-364da2661108	http://marc.info/?l=bugtraq&m=103470282514938&w=2
	af854a3a-2127-422b-91ae-364da2661108	http://marc.info/?l=tomcat-dev&m=103417249325526&w=2
	af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2003/dsa-225
	af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2003-075.html
	af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2003-082.html
	af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/6562
	af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/10376
	af854a3a-2127-422b-91ae-364da2661108	https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E
	af854a3a-2127-422b-91ae-364da2661108	https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E
	af854a3a-2127-422b-91ae-364da2661108	https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

Impacted products

Vendor	Product	Version
apache	tomcat	4.0.0
apache	tomcat	4.0.1
apache	tomcat	4.0.2
apache	tomcat	4.0.3
apache	tomcat	4.0.4
apache	tomcat	4.0.5
apache	tomcat	4.1.0
apache	tomcat	4.1.3
apache	tomcat	4.1.9
apache	tomcat	4.1.10

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:apache:tomcat:4.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "914E1404-01A2-4F94-AA40-D5EA20F55AD3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:tomcat:4.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "81FB1106-B26D-45BE-A511-8E69131BBA52",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:tomcat:4.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "401A213A-FED3-49C0-B823-2E02EA528905",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:tomcat:4.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "0BFE5AD8-DB14-4632-9D2A-F2013579CA7D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:tomcat:4.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "7641278D-3B8B-4CD2-B284-2047B65514A2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:tomcat:4.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "BB7B9911-E836-4A96-A0E8-D13C957EC0EE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:tomcat:4.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "0E300013-0CE7-4313-A553-74A6A247B3E9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:tomcat:4.1.3:beta:*:*:*:*:*:*",
              "matchCriteriaId": "B7E52BE7-5281-4430-8846-E41CF34FC214",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:tomcat:4.1.9:beta:*:*:*:*:*:*",
              "matchCriteriaId": "CBDA8066-294D-431E-B026-C03707DFBCD5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:apache:tomcat:4.1.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "C92F3744-C8F9-4E29-BF1A-25E03A32F2C0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148."
    },
    {
      "lang": "es",
      "value": "Apache Tomcat 4.0.5 y anteriores, cuando usando el servlet invocador y el servlet por defecto, permite a atacantes remotos leer c\u00f3digo fuente de ficheros del servidor o evadir ciertas protecciones, una variante de CAN-2002-1148"
    }
  ],
  "id": "CVE-2002-1394",
  "lastModified": "2026-04-16T00:27:16.627",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": true,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2003-01-17T05:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://issues.apache.org/bugzilla/show_bug.cgi?id=13365"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://marc.info/?l=bugtraq\u0026m=103470282514938\u0026w=2"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.debian.org/security/2003/dsa-225"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2003-075.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2003-082.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/6562"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10376"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://issues.apache.org/bugzilla/show_bug.cgi?id=13365"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=bugtraq\u0026m=103470282514938\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2003/dsa-225"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2003-075.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2003-082.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/6562"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10376"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-8V5P-2CPV-C2X6

Vulnerability from github – Published: 2022-04-30 18:21 – Updated: 2024-02-12 19:58

Summary

Apache Tomcat Source Code Disclosure

Details

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "database_specific": {
        "last_known_affected_version_range": "\u003c= 4.0.5"
      },
      "package": {
        "ecosystem": "Maven",
        "name": "org.apache.tomcat:tomcat"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "4.0.6"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2002-1394"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-200"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2024-02-12T19:58:01Z",
    "nvd_published_at": "2003-01-17T05:00:00Z",
    "severity": "HIGH"
  },
  "details": "Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148.",
  "id": "GHSA-8v5p-2cpv-c2x6",
  "modified": "2024-02-12T19:58:01Z",
  "published": "2022-04-30T18:21:05Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1394"
    },
    {
      "type": "WEB",
      "url": "https://archive.apache.org/dist/tomcat/tomcat-4/archive/v4.0.6/README.html"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10376"
    },
    {
      "type": "WEB",
      "url": "https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@\u003cdev.tomcat.apache.org\u003e"
    },
    {
      "type": "WEB",
      "url": "https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@\u003cdev.tomcat.apache.org\u003e"
    },
    {
      "type": "WEB",
      "url": "https://web.archive.org/web/20030412075128/http://rhn.redhat.com/errata/RHSA-2003-075.html"
    },
    {
      "type": "WEB",
      "url": "https://web.archive.org/web/20030705143220/http://www.securityfocus.com/bid/6562"
    },
    {
      "type": "WEB",
      "url": "https://web.archive.org/web/20041024213235/http://rhn.redhat.com/errata/RHSA-2003-082.html"
    },
    {
      "type": "WEB",
      "url": "https://web.archive.org/web/20070430073829/http://www.debian.org/security/2003/dsa-225"
    },
    {
      "type": "WEB",
      "url": "http://issues.apache.org/bugzilla/show_bug.cgi?id=13365"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=bugtraq\u0026m=103470282514938\u0026w=2"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [],
  "summary": "Apache Tomcat Source Code Disclosure"
}

GSD-2002-1394

Vulnerability from gsd - Updated: 2023-12-13 01:24

Details

Aliases

CVE-2002-1394

Aliases

CVE-2002-1394

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2002-1394",
    "description": "Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148.",
    "id": "GSD-2002-1394",
    "references": [
      "https://www.debian.org/security/2003/dsa-225",
      "https://access.redhat.com/errata/RHSA-2003:082",
      "https://access.redhat.com/errata/RHSA-2003:075"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2002-1394"
      ],
      "details": "Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148.",
      "id": "GSD-2002-1394",
      "modified": "2023-12-13T01:24:10.338352Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2002-1394",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "GLSA-200210-001",
            "refsource": "GENTOO",
            "url": "http://marc.info/?l=bugtraq\u0026m=103470282514938\u0026w=2"
          },
          {
            "name": "http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2",
            "refsource": "CONFIRM",
            "url": "http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2"
          },
          {
            "name": "DSA-225",
            "refsource": "DEBIAN",
            "url": "http://www.debian.org/security/2003/dsa-225"
          },
          {
            "name": "RHSA-2003:075",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2003-075.html"
          },
          {
            "name": "6562",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/6562"
          },
          {
            "name": "http://issues.apache.org/bugzilla/show_bug.cgi?id=13365",
            "refsource": "CONFIRM",
            "url": "http://issues.apache.org/bugzilla/show_bug.cgi?id=13365"
          },
          {
            "name": "RHSA-2003:082",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2003-082.html"
          },
          {
            "name": "tomcat-invoker-source-code(10376)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10376"
          },
          {
            "name": "[tomcat-dev] 20190319 svn commit: r1855831 [21/30] - in /tomcat/site/trunk: ./ docs/ xdocs/",
            "refsource": "MLIST",
            "url": "https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-dev] 20190325 svn commit: r1856174 [19/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/",
            "refsource": "MLIST",
            "url": "https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E"
          },
          {
            "name": "[tomcat-dev] 20200213 svn commit: r1873980 [24/34] - /tomcat/site/trunk/docs/",
            "refsource": "MLIST",
            "url": "https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:apache:tomcat:4.0.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:tomcat:4.0.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:tomcat:4.0.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:tomcat:4.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:tomcat:4.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:tomcat:4.1.10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:tomcat:4.1.3:beta:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:tomcat:4.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:tomcat:4.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:apache:tomcat:4.1.9:beta:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2002-1394"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "DSA-225",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "http://www.debian.org/security/2003/dsa-225"
            },
            {
              "name": "http://issues.apache.org/bugzilla/show_bug.cgi?id=13365",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://issues.apache.org/bugzilla/show_bug.cgi?id=13365"
            },
            {
              "name": "RHSA-2003:075",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://www.redhat.com/support/errata/RHSA-2003-075.html"
            },
            {
              "name": "RHSA-2003:082",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://www.redhat.com/support/errata/RHSA-2003-082.html"
            },
            {
              "name": "6562",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/6562"
            },
            {
              "name": "GLSA-200210-001",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://marc.info/?l=bugtraq\u0026m=103470282514938\u0026w=2"
            },
            {
              "name": "http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://marc.info/?l=tomcat-dev\u0026m=103417249325526\u0026w=2"
            },
            {
              "name": "tomcat-invoker-source-code(10376)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/10376"
            },
            {
              "name": "[tomcat-dev] 20190319 svn commit: r1855831 [21/30] - in /tomcat/site/trunk: ./ docs/ xdocs/",
              "refsource": "MLIST",
              "tags": [],
              "url": "https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5@%3Cdev.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-dev] 20190325 svn commit: r1856174 [19/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/",
              "refsource": "MLIST",
              "tags": [],
              "url": "https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74@%3Cdev.tomcat.apache.org%3E"
            },
            {
              "name": "[tomcat-dev] 20200213 svn commit: r1873980 [24/34] - /tomcat/site/trunk/docs/",
              "refsource": "MLIST",
              "tags": [],
              "url": "https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3@%3Cdev.tomcat.apache.org%3E"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": true,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2019-03-25T11:29Z",
      "publishedDate": "2003-01-17T05:00Z"
    }
  }
}

RHSA-2003:075

Vulnerability from csaf_redhat - Published: 2003-04-09 20:14 - Updated: 2025-11-21 17:25

Summary

Red Hat Security Advisory: tomcat security update for Stronghold

Severity

Important

Notes

Topic: Updated tomcat packages are now available for Stronghold 4.0 to close a second JSP source code exposure vulnerability.

Details: Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. A source code exposure vulnerability has been found that affects Tomcat versions 4.0.0 through 4.0.5 and 4.1.0 through 4.1.12, in a variant of the issue addressed in RHSA-2002:218. Using a carefully crafted request, a remote attacker can read the source code of any deployed JSP file. The previous erratum for Stronghold on Advanced Server, RHSA-2002:218, contained Tomcat 4.0.5 and is therefore susceptible to this vulnerability. All users are advised to upgrade to these erratum packages containing Tomcat version 4.0.6 which is not vulnerable to this issue.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2002-1394

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Stronghold 4 for Red Hat Enterprise Linux Red Hat / Stronghold 4.0 for Red Hat Enterprise Linux	`cpe:/a:redhat:rhel_stronghold:4`	—	Vendor Fix fix

References

7 references

URL	Category
https://access.redhat.com/errata/RHSA-2003:075	self
https://access.redhat.com/security/updates/classi…	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2002-1394	self
https://bugzilla.redhat.com/show_bug.cgi?id=1616907	external
https://www.cve.org/CVERecord?id=CVE-2002-1394	external
https://nvd.nist.gov/vuln/detail/CVE-2002-1394	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated tomcat packages are now available for Stronghold 4.0 to\nclose a second JSP source code exposure vulnerability.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Tomcat is the servlet container that is used in the official Reference\nImplementation for the Java Servlet and JavaServer Pages technologies. \nA source code exposure vulnerability has been found that affects Tomcat\nversions 4.0.0 through 4.0.5 and 4.1.0 through 4.1.12, in a variant of\nthe issue addressed in RHSA-2002:218.\n\nUsing a carefully crafted request, a remote attacker can read the source\ncode of any deployed JSP file.   \n\nThe previous erratum for Stronghold on Advanced Server, RHSA-2002:218,\ncontained Tomcat 4.0.5 and is therefore susceptible to this vulnerability.\n\nAll users are advised to upgrade to these erratum packages containing\nTomcat version 4.0.6 which is not vulnerable to this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2003:075",
        "url": "https://access.redhat.com/errata/RHSA-2003:075"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2003/rhsa-2003_075.json"
      }
    ],
    "title": "Red Hat Security Advisory: tomcat security update for Stronghold",
    "tracking": {
      "current_release_date": "2025-11-21T17:25:42+00:00",
      "generator": {
        "date": "2025-11-21T17:25:42+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2003:075",
      "initial_release_date": "2003-04-09T20:14:00+00:00",
      "revision_history": [
        {
          "date": "2003-04-09T20:14:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2003-04-09T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:25:42+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Stronghold 4 for Red Hat Enterprise Linux",
                "product": {
                  "name": "Stronghold 4 for Red Hat Enterprise Linux",
                  "product_id": "Stronghold 4 for Red Hat Enterprise Linux",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_stronghold:4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Stronghold 4.0 for Red Hat Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2002-1394",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616907"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Stronghold 4 for Red Hat Enterprise Linux"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2002-1394"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616907",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616907"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2002-1394",
          "url": "https://www.cve.org/CVERecord?id=CVE-2002-1394"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1394",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1394"
        }
      ],
      "release_date": "2002-10-09T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-04-09T20:14:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "Stronghold 4 for Red Hat Enterprise Linux"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2003:075"
        }
      ],
      "title": "security flaw"
    }
  ]
}

RHSA-2003:082

Vulnerability from csaf_redhat - Published: 2003-03-03 09:16 - Updated: 2025-11-21 17:25

Summary

Red Hat Security Advisory: apache, openssl, php, tomcat security update for Stronghold

Severity

Important

Notes

Topic: Updated versions of Stronghold 4 cross-platform are available to fix a number of vulnerabilities in OpenSSL, Apache, PHP, and Tomcat. Also included in this update are bug fixes for mod_proxy and the mod_authz_ldap package.

Details: Stronghold 4 cross platform contains a number of open source technologies such as OpenSSL, Apache, and PHP. A number of issues have been found in versions of these projects: In a paper, Brice Canvel, Alain Hiltgen, Serge Vaudenay, and Martin Vuagnoux describe and demonstrate a timing-based attack on CBC ciphersuites in SSL and TLS. An active attacker may be able to use timing observations to distinguish between two different error cases: cipher padding errors and MAC verification errors. Over multiple connections this can leak sufficient information to be able to retrieve the plain text of a common, fixed block. In order for an attack to be successful an attacker must be able to act as a man-in-the-middle to intercept and modify multiple connections which all involve a common fixed plain text block (such as a password), and have good network conditions that allow small changes in timing to be reliably observed. The Apache Web server does not prevent escape sequences from being written to the error log. This could allow an attacker to embed arbitrary escape sequences into the log file. A recent paper by HD Moore highlighted several issues where common terminal emulator software (such as xterm) can be remotely abused or exploited by displaying arbitrary escape sequences. The MySQL client library (libmysqlclient) used in the PHP MySQL extension in PHP versions earlier than 4.3.0 does not properly verify length fields for certain responses in the read_rows or read_one_row routines, which allows a malicious server to cause a denial of service and possibly execute arbitrary code. A source code exposure vulnerability has been found that affects Tomcat versions 4.0.0 through 4.0.5 and 4.1.0 through 4.1.12, in a variant of the issue addressed in RHSA-2002:217. Using a carefully crafted request, a remote attacker can read the source code of any deployed JSP file. In addition to the security fixes, two bug fixes have also been applied: If Apache is configured to act as a reverse proxy by specifying the backend server using a numeric IP address, the mod_proxy module will perform a redundant reverse DNS lookup on the IP address, causing a delay in request processing. A bug in mod_authz_ldap version 0.21 and earlier prevent authentication being performed by other Apache modules (such as filed-based authentication using mod_auth) when the mod_authz_ldap module is loaded. Stronghold 4 cross platform contains OpenSSL 0.9.6c, Apache 1.3.22, PHP 4.1.2, Tomcat 4.0.5, and mod_authz_ldap 0.19, and is therefore vulnerable to these issues. Users of Stronghold are advised to update to the errata versions of Stronghold 4 which contain backported security fixes and are not vulnerable to these issues.

CVE-2002-1376

libmysqlclient client library in MySQL 3.x to 3.23.54, and 4.x to 4.0.6, does not properly verify length fields for certain responses in the (1) read_rows or (2) read_one_row routines, which allows remote attackers to cause a denial of service and possibly execute arbitrary code.

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Stronghold 4 Red Hat / Stronghold Cross Platform	`cpe:/a:redhat:stronghold:4`	—	Vendor Fix fix

Threats

Impact Important

CVE-2002-1394

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Stronghold 4 Red Hat / Stronghold Cross Platform	`cpe:/a:redhat:stronghold:4`	—	Vendor Fix fix

CVE-2003-0020

Apache does not filter terminal escape sequences from its error logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences.

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Stronghold 4 Red Hat / Stronghold Cross Platform	`cpe:/a:redhat:stronghold:4`	—	Vendor Fix fix

Threats

Impact Low

CVE-2003-0078

ssl3_get_record in s3_pkt.c for OpenSSL before 0.9.7a and 0.9.6 before 0.9.6i does not perform a MAC computation if an incorrect block cipher padding is used, which causes an information leak (timing discrepancy) that may make it easier to launch cryptographic attacks that rely on distinguishing between padding and MAC verification errors, possibly leading to extraction of the original plaintext, aka the "Vaudenay timing attack."

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Stronghold 4 Red Hat / Stronghold Cross Platform	`cpe:/a:redhat:stronghold:4`	—	Vendor Fix fix

Threats

Impact Moderate

References

22 references

URL	Category
https://access.redhat.com/errata/RHSA-2003:082	self
https://access.redhat.com/security/updates/classi…	external
http://lasecwww.epfl.ch/pub/lasec/doc/Vau02a.ps	external
http://www.digitaldefense.net/labs/papers/Termula…	external
https://bugzilla.redhat.com/show_bug.cgi?id=80057	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2002-1376	self
https://bugzilla.redhat.com/show_bug.cgi?id=1616897	external
https://www.cve.org/CVERecord?id=CVE-2002-1376	external
https://nvd.nist.gov/vuln/detail/CVE-2002-1376	external
https://access.redhat.com/security/cve/CVE-2002-1394	self
https://bugzilla.redhat.com/show_bug.cgi?id=1616907	external
https://www.cve.org/CVERecord?id=CVE-2002-1394	external
https://nvd.nist.gov/vuln/detail/CVE-2002-1394	external
https://access.redhat.com/security/cve/CVE-2003-0020	self
https://bugzilla.redhat.com/show_bug.cgi?id=1616937	external
https://www.cve.org/CVERecord?id=CVE-2003-0020	external
https://nvd.nist.gov/vuln/detail/CVE-2003-0020	external
https://access.redhat.com/security/cve/CVE-2003-0078	self
https://bugzilla.redhat.com/show_bug.cgi?id=1616956	external
https://www.cve.org/CVERecord?id=CVE-2003-0078	external
https://nvd.nist.gov/vuln/detail/CVE-2003-0078	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated versions of Stronghold 4 cross-platform are available to fix a\nnumber of vulnerabilities in OpenSSL, Apache, PHP, and Tomcat.\n\nAlso included in this update are bug fixes for mod_proxy and the\nmod_authz_ldap package.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Stronghold 4 cross platform contains a number of open source technologies\nsuch as OpenSSL, Apache, and PHP. A number of issues have been found in\nversions of these projects:\n\nIn a paper, Brice Canvel, Alain Hiltgen, Serge Vaudenay, and Martin\nVuagnoux describe and demonstrate a timing-based attack on CBC ciphersuites\nin SSL and TLS. An active attacker may be able to use timing observations\nto distinguish between two different error cases: cipher padding errors and\nMAC verification errors. Over multiple connections this can leak\nsufficient information to be able to retrieve the plain text of a common,\nfixed block. In order for an attack to be successful an attacker must be\nable to act as a man-in-the-middle to intercept and modify multiple\nconnections which all involve a common fixed plain text block (such as a\npassword), and have good network conditions that allow small changes in\ntiming to be reliably observed.\n\nThe Apache Web server does not prevent escape sequences from being written\nto the error log. This could allow an attacker to embed arbitrary escape\nsequences into the log file. A recent paper by HD Moore highlighted\nseveral issues where common terminal emulator software (such as xterm) can\nbe remotely abused or exploited by displaying arbitrary escape sequences.\n\nThe MySQL client library (libmysqlclient) used in the PHP MySQL extension\nin PHP versions earlier than 4.3.0 does not properly verify length fields\nfor certain responses in the read_rows or read_one_row routines, which\nallows a malicious server to cause a denial of service and possibly execute\narbitrary code.\n\nA source code exposure vulnerability has been found that affects Tomcat\nversions 4.0.0 through 4.0.5 and 4.1.0 through 4.1.12, in a variant of\nthe issue addressed in RHSA-2002:217. Using a carefully crafted request, a\nremote attacker can read the source code of any deployed JSP file.\n\nIn addition to the security fixes, two bug fixes have also been applied:\n\nIf Apache is configured to act as a reverse proxy by specifying the backend\nserver using a numeric IP address, the mod_proxy module will perform a\nredundant reverse DNS lookup on the IP address, causing a delay in request\nprocessing.\n\nA bug in mod_authz_ldap version 0.21 and earlier prevent\nauthentication being performed by other Apache modules (such as\nfiled-based authentication using mod_auth) when the mod_authz_ldap module\nis loaded.\n\nStronghold 4 cross platform contains OpenSSL 0.9.6c, Apache 1.3.22, PHP\n4.1.2, Tomcat 4.0.5, and mod_authz_ldap 0.19, and is therefore vulnerable\nto these issues. Users of Stronghold are advised to update to the errata\nversions of Stronghold 4 which contain backported security fixes and are\nnot vulnerable to these issues.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2003:082",
        "url": "https://access.redhat.com/errata/RHSA-2003:082"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "http://lasecwww.epfl.ch/pub/lasec/doc/Vau02a.ps",
        "url": "http://lasecwww.epfl.ch/pub/lasec/doc/Vau02a.ps"
      },
      {
        "category": "external",
        "summary": "http://www.digitaldefense.net/labs/papers/Termulation.txt",
        "url": "http://www.digitaldefense.net/labs/papers/Termulation.txt"
      },
      {
        "category": "external",
        "summary": "80057",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=80057"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2003/rhsa-2003_082.json"
      }
    ],
    "title": "Red Hat Security Advisory: apache, openssl, php, tomcat security update for Stronghold",
    "tracking": {
      "current_release_date": "2025-11-21T17:25:44+00:00",
      "generator": {
        "date": "2025-11-21T17:25:44+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2003:082",
      "initial_release_date": "2003-03-03T09:16:00+00:00",
      "revision_history": [
        {
          "date": "2003-03-03T09:16:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2003-02-27T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:25:44+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Stronghold 4",
                "product": {
                  "name": "Red Hat Stronghold 4",
                  "product_id": "Red Hat Stronghold 4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:stronghold:4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Stronghold Cross Platform"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2002-1376",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616897"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "libmysqlclient client library in MySQL 3.x to 3.23.54, and 4.x to 4.0.6, does not properly verify length fields for certain responses in the (1) read_rows or (2) read_one_row routines, which allows remote attackers to cause a denial of service and possibly execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Stronghold 4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2002-1376"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616897",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616897"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2002-1376",
          "url": "https://www.cve.org/CVERecord?id=CVE-2002-1376"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1376",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1376"
        }
      ],
      "release_date": "2002-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-03-03T09:16:00+00:00",
          "details": "Fixed Stronghold 4 packages are now available via the update agent service; run\n\n$ bin/agent\n\nfrom the Stronghold 4 install root to upgrade an existing Stronghold 4\ninstallation to the new package versions. After upgrading Stronghold, the\nserver must be completely restarted by running the following commands from\nthe install root:\n\n$ bin/stop-server\n$ bin/stop-tomcat\n$ bin/start-tomcat\n$ bin/start-server\n\nFor more information on how to upgrade between releases of Stronghold 4,\nsee http://stronghold.redhat.com/support/upgrade-sh4",
          "product_ids": [
            "Red Hat Stronghold 4"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2003:082"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "security flaw"
    },
    {
      "cve": "CVE-2002-1394",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616907"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Stronghold 4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2002-1394"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616907",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616907"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2002-1394",
          "url": "https://www.cve.org/CVERecord?id=CVE-2002-1394"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1394",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1394"
        }
      ],
      "release_date": "2002-10-09T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-03-03T09:16:00+00:00",
          "details": "Fixed Stronghold 4 packages are now available via the update agent service; run\n\n$ bin/agent\n\nfrom the Stronghold 4 install root to upgrade an existing Stronghold 4\ninstallation to the new package versions. After upgrading Stronghold, the\nserver must be completely restarted by running the following commands from\nthe install root:\n\n$ bin/stop-server\n$ bin/stop-tomcat\n$ bin/start-tomcat\n$ bin/start-server\n\nFor more information on how to upgrade between releases of Stronghold 4,\nsee http://stronghold.redhat.com/support/upgrade-sh4",
          "product_ids": [
            "Red Hat Stronghold 4"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2003:082"
        }
      ],
      "title": "security flaw"
    },
    {
      "cve": "CVE-2003-0020",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616937"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Apache does not filter terminal escape sequences from its error logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Stronghold 4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-0020"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616937",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616937"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-0020",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-0020"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-0020",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-0020"
        }
      ],
      "release_date": "2003-02-24T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-03-03T09:16:00+00:00",
          "details": "Fixed Stronghold 4 packages are now available via the update agent service; run\n\n$ bin/agent\n\nfrom the Stronghold 4 install root to upgrade an existing Stronghold 4\ninstallation to the new package versions. After upgrading Stronghold, the\nserver must be completely restarted by running the following commands from\nthe install root:\n\n$ bin/stop-server\n$ bin/stop-tomcat\n$ bin/start-tomcat\n$ bin/start-server\n\nFor more information on how to upgrade between releases of Stronghold 4,\nsee http://stronghold.redhat.com/support/upgrade-sh4",
          "product_ids": [
            "Red Hat Stronghold 4"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2003:082"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    },
    {
      "cve": "CVE-2003-0078",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616956"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "ssl3_get_record in s3_pkt.c for OpenSSL before 0.9.7a and 0.9.6 before 0.9.6i does not perform a MAC computation if an incorrect block cipher padding is used, which causes an information leak (timing discrepancy) that may make it easier to launch cryptographic attacks that rely on distinguishing between padding and MAC verification errors, possibly leading to extraction of the original plaintext, aka the \"Vaudenay timing attack.\"",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Stronghold 4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-0078"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616956",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616956"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-0078",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-0078"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-0078",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-0078"
        }
      ],
      "release_date": "2003-02-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-03-03T09:16:00+00:00",
          "details": "Fixed Stronghold 4 packages are now available via the update agent service; run\n\n$ bin/agent\n\nfrom the Stronghold 4 install root to upgrade an existing Stronghold 4\ninstallation to the new package versions. After upgrading Stronghold, the\nserver must be completely restarted by running the following commands from\nthe install root:\n\n$ bin/stop-server\n$ bin/stop-tomcat\n$ bin/start-tomcat\n$ bin/start-server\n\nFor more information on how to upgrade between releases of Stronghold 4,\nsee http://stronghold.redhat.com/support/upgrade-sh4",
          "product_ids": [
            "Red Hat Stronghold 4"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2003:082"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "security flaw"
    }
  ]
}

RHSA-2003_075

Vulnerability from csaf_redhat - Published: 2003-04-09 20:14 - Updated: 2024-11-21 22:41

Summary

Red Hat Security Advisory: tomcat security update for Stronghold

Severity

Important

Notes

Topic: Updated tomcat packages are now available for Stronghold 4.0 to close a second JSP source code exposure vulnerability.

CVE-2002-1394

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Stronghold 4 for Red Hat Enterprise Linux Red Hat / Stronghold 4.0 for Red Hat Enterprise Linux	`cpe:/a:redhat:rhel_stronghold:4`	—	Vendor Fix fix

References

7 references

URL	Category
https://access.redhat.com/errata/RHSA-2003:075	self
https://access.redhat.com/security/updates/classi…	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2002-1394	self
https://bugzilla.redhat.com/show_bug.cgi?id=1616907	external
https://www.cve.org/CVERecord?id=CVE-2002-1394	external
https://nvd.nist.gov/vuln/detail/CVE-2002-1394	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated tomcat packages are now available for Stronghold 4.0 to\nclose a second JSP source code exposure vulnerability.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Tomcat is the servlet container that is used in the official Reference\nImplementation for the Java Servlet and JavaServer Pages technologies. \nA source code exposure vulnerability has been found that affects Tomcat\nversions 4.0.0 through 4.0.5 and 4.1.0 through 4.1.12, in a variant of\nthe issue addressed in RHSA-2002:218.\n\nUsing a carefully crafted request, a remote attacker can read the source\ncode of any deployed JSP file.   \n\nThe previous erratum for Stronghold on Advanced Server, RHSA-2002:218,\ncontained Tomcat 4.0.5 and is therefore susceptible to this vulnerability.\n\nAll users are advised to upgrade to these erratum packages containing\nTomcat version 4.0.6 which is not vulnerable to this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2003:075",
        "url": "https://access.redhat.com/errata/RHSA-2003:075"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2003/rhsa-2003_075.json"
      }
    ],
    "title": "Red Hat Security Advisory: tomcat security update for Stronghold",
    "tracking": {
      "current_release_date": "2024-11-21T22:41:45+00:00",
      "generator": {
        "date": "2024-11-21T22:41:45+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2003:075",
      "initial_release_date": "2003-04-09T20:14:00+00:00",
      "revision_history": [
        {
          "date": "2003-04-09T20:14:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2003-04-09T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-21T22:41:45+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Stronghold 4 for Red Hat Enterprise Linux",
                "product": {
                  "name": "Stronghold 4 for Red Hat Enterprise Linux",
                  "product_id": "Stronghold 4 for Red Hat Enterprise Linux",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_stronghold:4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Stronghold 4.0 for Red Hat Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2002-1394",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616907"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Stronghold 4 for Red Hat Enterprise Linux"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2002-1394"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616907",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616907"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2002-1394",
          "url": "https://www.cve.org/CVERecord?id=CVE-2002-1394"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1394",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1394"
        }
      ],
      "release_date": "2002-10-09T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-04-09T20:14:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which are\nnot installed but included in the list will not be updated.  Note that you\ncan also use wildcards (*.rpm) if your current directory *only* contains the\ndesired RPMs.\n\nPlease note that this update is also available via Red Hat Network.  Many\npeople find this an easier way to apply updates.  To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
          "product_ids": [
            "Stronghold 4 for Red Hat Enterprise Linux"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2003:075"
        }
      ],
      "title": "security flaw"
    }
  ]
}

RHSA-2003_082

Vulnerability from csaf_redhat - Published: 2003-03-03 09:16 - Updated: 2024-11-21 22:41

Summary

Red Hat Security Advisory: apache, openssl, php, tomcat security update for Stronghold

Severity

Important

Notes

CVE-2002-1376

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Stronghold 4 Red Hat / Stronghold Cross Platform	`cpe:/a:redhat:stronghold:4`	—	Vendor Fix fix

Threats

Impact Important

CVE-2002-1394

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Stronghold 4 Red Hat / Stronghold Cross Platform	`cpe:/a:redhat:stronghold:4`	—	Vendor Fix fix

CVE-2003-0020

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Stronghold 4 Red Hat / Stronghold Cross Platform	`cpe:/a:redhat:stronghold:4`	—	Vendor Fix fix

Threats

Impact Low

CVE-2003-0078

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Red Hat Stronghold 4 Red Hat / Stronghold Cross Platform	`cpe:/a:redhat:stronghold:4`	—	Vendor Fix fix

Threats

Impact Moderate

References

22 references

URL	Category
https://access.redhat.com/errata/RHSA-2003:082	self
https://access.redhat.com/security/updates/classi…	external
http://lasecwww.epfl.ch/pub/lasec/doc/Vau02a.ps	external
http://www.digitaldefense.net/labs/papers/Termula…	external
https://bugzilla.redhat.com/show_bug.cgi?id=80057	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2002-1376	self
https://bugzilla.redhat.com/show_bug.cgi?id=1616897	external
https://www.cve.org/CVERecord?id=CVE-2002-1376	external
https://nvd.nist.gov/vuln/detail/CVE-2002-1376	external
https://access.redhat.com/security/cve/CVE-2002-1394	self
https://bugzilla.redhat.com/show_bug.cgi?id=1616907	external
https://www.cve.org/CVERecord?id=CVE-2002-1394	external
https://nvd.nist.gov/vuln/detail/CVE-2002-1394	external
https://access.redhat.com/security/cve/CVE-2003-0020	self
https://bugzilla.redhat.com/show_bug.cgi?id=1616937	external
https://www.cve.org/CVERecord?id=CVE-2003-0020	external
https://nvd.nist.gov/vuln/detail/CVE-2003-0020	external
https://access.redhat.com/security/cve/CVE-2003-0078	self
https://bugzilla.redhat.com/show_bug.cgi?id=1616956	external
https://www.cve.org/CVERecord?id=CVE-2003-0078	external
https://nvd.nist.gov/vuln/detail/CVE-2003-0078	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated versions of Stronghold 4 cross-platform are available to fix a\nnumber of vulnerabilities in OpenSSL, Apache, PHP, and Tomcat.\n\nAlso included in this update are bug fixes for mod_proxy and the\nmod_authz_ldap package.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Stronghold 4 cross platform contains a number of open source technologies\nsuch as OpenSSL, Apache, and PHP. A number of issues have been found in\nversions of these projects:\n\nIn a paper, Brice Canvel, Alain Hiltgen, Serge Vaudenay, and Martin\nVuagnoux describe and demonstrate a timing-based attack on CBC ciphersuites\nin SSL and TLS. An active attacker may be able to use timing observations\nto distinguish between two different error cases: cipher padding errors and\nMAC verification errors. Over multiple connections this can leak\nsufficient information to be able to retrieve the plain text of a common,\nfixed block. In order for an attack to be successful an attacker must be\nable to act as a man-in-the-middle to intercept and modify multiple\nconnections which all involve a common fixed plain text block (such as a\npassword), and have good network conditions that allow small changes in\ntiming to be reliably observed.\n\nThe Apache Web server does not prevent escape sequences from being written\nto the error log. This could allow an attacker to embed arbitrary escape\nsequences into the log file. A recent paper by HD Moore highlighted\nseveral issues where common terminal emulator software (such as xterm) can\nbe remotely abused or exploited by displaying arbitrary escape sequences.\n\nThe MySQL client library (libmysqlclient) used in the PHP MySQL extension\nin PHP versions earlier than 4.3.0 does not properly verify length fields\nfor certain responses in the read_rows or read_one_row routines, which\nallows a malicious server to cause a denial of service and possibly execute\narbitrary code.\n\nA source code exposure vulnerability has been found that affects Tomcat\nversions 4.0.0 through 4.0.5 and 4.1.0 through 4.1.12, in a variant of\nthe issue addressed in RHSA-2002:217. Using a carefully crafted request, a\nremote attacker can read the source code of any deployed JSP file.\n\nIn addition to the security fixes, two bug fixes have also been applied:\n\nIf Apache is configured to act as a reverse proxy by specifying the backend\nserver using a numeric IP address, the mod_proxy module will perform a\nredundant reverse DNS lookup on the IP address, causing a delay in request\nprocessing.\n\nA bug in mod_authz_ldap version 0.21 and earlier prevent\nauthentication being performed by other Apache modules (such as\nfiled-based authentication using mod_auth) when the mod_authz_ldap module\nis loaded.\n\nStronghold 4 cross platform contains OpenSSL 0.9.6c, Apache 1.3.22, PHP\n4.1.2, Tomcat 4.0.5, and mod_authz_ldap 0.19, and is therefore vulnerable\nto these issues. Users of Stronghold are advised to update to the errata\nversions of Stronghold 4 which contain backported security fixes and are\nnot vulnerable to these issues.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2003:082",
        "url": "https://access.redhat.com/errata/RHSA-2003:082"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "http://lasecwww.epfl.ch/pub/lasec/doc/Vau02a.ps",
        "url": "http://lasecwww.epfl.ch/pub/lasec/doc/Vau02a.ps"
      },
      {
        "category": "external",
        "summary": "http://www.digitaldefense.net/labs/papers/Termulation.txt",
        "url": "http://www.digitaldefense.net/labs/papers/Termulation.txt"
      },
      {
        "category": "external",
        "summary": "80057",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=80057"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2003/rhsa-2003_082.json"
      }
    ],
    "title": "Red Hat Security Advisory: apache, openssl, php, tomcat security update for Stronghold",
    "tracking": {
      "current_release_date": "2024-11-21T22:41:49+00:00",
      "generator": {
        "date": "2024-11-21T22:41:49+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2003:082",
      "initial_release_date": "2003-03-03T09:16:00+00:00",
      "revision_history": [
        {
          "date": "2003-03-03T09:16:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2003-02-27T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-21T22:41:49+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Stronghold 4",
                "product": {
                  "name": "Red Hat Stronghold 4",
                  "product_id": "Red Hat Stronghold 4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:stronghold:4"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Stronghold Cross Platform"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2002-1376",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616897"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "libmysqlclient client library in MySQL 3.x to 3.23.54, and 4.x to 4.0.6, does not properly verify length fields for certain responses in the (1) read_rows or (2) read_one_row routines, which allows remote attackers to cause a denial of service and possibly execute arbitrary code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Stronghold 4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2002-1376"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616897",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616897"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2002-1376",
          "url": "https://www.cve.org/CVERecord?id=CVE-2002-1376"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1376",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1376"
        }
      ],
      "release_date": "2002-12-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-03-03T09:16:00+00:00",
          "details": "Fixed Stronghold 4 packages are now available via the update agent service; run\n\n$ bin/agent\n\nfrom the Stronghold 4 install root to upgrade an existing Stronghold 4\ninstallation to the new package versions. After upgrading Stronghold, the\nserver must be completely restarted by running the following commands from\nthe install root:\n\n$ bin/stop-server\n$ bin/stop-tomcat\n$ bin/start-tomcat\n$ bin/start-server\n\nFor more information on how to upgrade between releases of Stronghold 4,\nsee http://stronghold.redhat.com/support/upgrade-sh4",
          "product_ids": [
            "Red Hat Stronghold 4"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2003:082"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "security flaw"
    },
    {
      "cve": "CVE-2002-1394",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616907"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Stronghold 4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2002-1394"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616907",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616907"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2002-1394",
          "url": "https://www.cve.org/CVERecord?id=CVE-2002-1394"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2002-1394",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1394"
        }
      ],
      "release_date": "2002-10-09T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-03-03T09:16:00+00:00",
          "details": "Fixed Stronghold 4 packages are now available via the update agent service; run\n\n$ bin/agent\n\nfrom the Stronghold 4 install root to upgrade an existing Stronghold 4\ninstallation to the new package versions. After upgrading Stronghold, the\nserver must be completely restarted by running the following commands from\nthe install root:\n\n$ bin/stop-server\n$ bin/stop-tomcat\n$ bin/start-tomcat\n$ bin/start-server\n\nFor more information on how to upgrade between releases of Stronghold 4,\nsee http://stronghold.redhat.com/support/upgrade-sh4",
          "product_ids": [
            "Red Hat Stronghold 4"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2003:082"
        }
      ],
      "title": "security flaw"
    },
    {
      "cve": "CVE-2003-0020",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616937"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Apache does not filter terminal escape sequences from its error logs, which could make it easier for attackers to insert those sequences into terminal emulators containing vulnerabilities related to escape sequences.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Stronghold 4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-0020"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616937",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616937"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-0020",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-0020"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-0020",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-0020"
        }
      ],
      "release_date": "2003-02-24T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-03-03T09:16:00+00:00",
          "details": "Fixed Stronghold 4 packages are now available via the update agent service; run\n\n$ bin/agent\n\nfrom the Stronghold 4 install root to upgrade an existing Stronghold 4\ninstallation to the new package versions. After upgrading Stronghold, the\nserver must be completely restarted by running the following commands from\nthe install root:\n\n$ bin/stop-server\n$ bin/stop-tomcat\n$ bin/start-tomcat\n$ bin/start-server\n\nFor more information on how to upgrade between releases of Stronghold 4,\nsee http://stronghold.redhat.com/support/upgrade-sh4",
          "product_ids": [
            "Red Hat Stronghold 4"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2003:082"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    },
    {
      "cve": "CVE-2003-0078",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1616956"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "ssl3_get_record in s3_pkt.c for OpenSSL before 0.9.7a and 0.9.6 before 0.9.6i does not perform a MAC computation if an incorrect block cipher padding is used, which causes an information leak (timing discrepancy) that may make it easier to launch cryptographic attacks that rely on distinguishing between padding and MAC verification errors, possibly leading to extraction of the original plaintext, aka the \"Vaudenay timing attack.\"",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Stronghold 4"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2003-0078"
        },
        {
          "category": "external",
          "summary": "RHBZ#1616956",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616956"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2003-0078",
          "url": "https://www.cve.org/CVERecord?id=CVE-2003-0078"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2003-0078",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2003-0078"
        }
      ],
      "release_date": "2003-02-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2003-03-03T09:16:00+00:00",
          "details": "Fixed Stronghold 4 packages are now available via the update agent service; run\n\n$ bin/agent\n\nfrom the Stronghold 4 install root to upgrade an existing Stronghold 4\ninstallation to the new package versions. After upgrading Stronghold, the\nserver must be completely restarted by running the following commands from\nthe install root:\n\n$ bin/stop-server\n$ bin/stop-tomcat\n$ bin/start-tomcat\n$ bin/start-server\n\nFor more information on how to upgrade between releases of Stronghold 4,\nsee http://stronghold.redhat.com/support/upgrade-sh4",
          "product_ids": [
            "Red Hat Stronghold 4"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2003:082"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "security flaw"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2002-1394 (GCVE-0-2002-1394)

Description

Solution

Description

Solution

Tags

Sightings

Nomenclature