Apache Tomcat HTTP DIGEST Authentication Multiple Security Weaknesses UPDATED

Summary

Apache Tomcat is prone to multiple security weaknesses that may allow attackers to bypass security restrictions and perform unauthorized attacks.

Credit:

The original article can be found at: http://www.securityfocus.com/bid/49762


Details

Vulnerable Systems:
 * Apache Software Foundation Tomcat 7.0.9 and prior

These issues affect the following versions:
Tomcat 7.0.0 to 7.0.11
Tomcat 6.0.0 to 6.0.32
Tomcat 5.5.0 to 5.5.33.

Vendor Status:
Vendor as issued an updated vulnerability.

Patch Availability:
http://tomcat.apache.org/security-7.html

CVE Information:
CVE-2011-1184

Disclosure Timeline:
Published:Sep 26 2011
Updated:Aug 10 2012

Categories: News