Vulnerability DatabaseCVE-2011-2526
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2011-2526
July 14, 2011
Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allows local users to bypass intended file access restrictions or cause a denial of service (infinite loop or JVM crash) by leveraging an untrusted web application.
Related Resources (58)
https://github.com/apache/tomcat55/commit/e67f6882118f2a8285e4e8acd050dad64a3ef3e4
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14573
http://marc.info/?l=bugtraq&m=133469267822771&w=2
https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E
http://www.securityfocus.com/bid/48667
https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E
https://bugzilla.redhat.com/show_bug.cgi?id=720948
http://tomcat.apache.org/security-7.html
https://web.archive.org/web/20140802025928/http://secunia.com/advisories/48308
https://web.archive.org/web/20160101195415/http://rhn.redhat.com/errata/RHSA-2012-0325.html
http://osvdb.org/73798
http://osvdb.org/73797
https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E
http://tomcat.apache.org/security-5.html
http://rhn.redhat.com/errata/RHSA-2012-0076.html
https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E
https://exchange.xforce.ibmcloud.com/vulnerabilities/68541
https://web.archive.org/web/20160101172638/http://rhn.redhat.com/errata/RHSA-2012-0077.html
https://github.com/apache/tomcat/commit/2e69497fa7b1444632c6dadb64a4a82e18478ee6
http://marc.info/?l=bugtraq&m=139344343412337&w=2
http://secunia.com/advisories/48308
http://rhn.redhat.com/errata/RHSA-2012-0074.html
https://nvd.nist.gov/vuln/detail/CVE-2011-2526
http://marc.info/?l=bugtraq&m=132215163318824&w=2
https://web.archive.org/web/20151017023138/http://secunia.com/advisories/57126
http://rhn.redhat.com/errata/RHSA-2012-0075.html
https://access.redhat.com/errata/RHSA-2012:0076
https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E
http://www.mandriva.com/security/advisories?name=MDVSA-2011:156
https://web.archive.org/web/20121025191346/http://secunia.com/advisories/45232
https://web.archive.org/web/20110717104325/http://www.securityfocus.com/bid/48667
http://svn.apache.org/viewvc?view=revision&revision=1146005
http://svn.apache.org/viewvc?view=revision&revision=1145571
http://secunia.com/advisories/45232
https://web.archive.org/web/20111110135231/http://www.securityfocus.com/archive/1/518889/100/0/threaded
https://github.com/apache/tomcat/commit/1d372c881eafd9ffe729996f8560fd5fe50cd39d
https://access.redhat.com/errata/RHSA-2012:0075
http://www.securitytracker.com/id?1025788
https://github.com/apache/tomcat/commit/48dded4ab1209a030770ab67a789d3b2528b6329
https://web.archive.org/web/20160101172212/http://rhn.redhat.com/errata/RHSA-2012-0078.html
http://www.debian.org/security/2012/dsa-2401
http://tomcat.apache.org/security-6.html
https://web.archive.org/web/20161107143207/http://www.securitytracker.com/id?1025788
http://svn.apache.org/viewvc?view=revision&revision=1145383
https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19514
http://rhn.redhat.com/errata/RHSA-2012-0078.html
http://marc.info/?l=bugtraq&m=136485229118404&w=2
https://github.com/apache/tomcat/commit/ff8789737a0a64c12d68929497f16d8021052048
http://secunia.com/advisories/57126
http://rhn.redhat.com/errata/RHSA-2012-0077.html
https://access.redhat.com/errata/RHSA-2012:0074
http://www.securityfocus.com/archive/1/518889/100/0/threaded
http://rhn.redhat.com/errata/RHSA-2012-0325.html
https://access.redhat.com/security/cve/CVE-2011-2526
http://svn.apache.org/viewvc?view=revision&revision=1145694
Do you need more information?
Contact Us
CVSS v4
Base Score:
2.1
Attack Vector
LOCAL
Attack Complexity
HIGH
Attack Requirements
NONE
Privileges Required
NONE
User Interaction
NONE
Vulnerable System Confidentiality
LOW
Vulnerable System Integrity
LOW
Vulnerable System Availability
LOW
Subsequent System Confidentiality
NONE
Subsequent System Integrity
NONE
Subsequent System Availability
NONE
CVSS v3
Base Score:
4.9
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
LOW
Availability
LOW
CVSS v2
Base Score:
4.4
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
Weakness Type (CWE)
Improper Input Validation
CWE-20
EPSS
Base Score:
0.13