Apache Tomcat Mod_JK.SO Arbitrary Code Execution Vulnerability

Bugtraq ID: 22791
Class: Design Error
CVE: CVE-2007-0774
Remote: Yes
Local: No
Published: Mar 02 2007 12:00AM
Updated: Jul 21 2008 05:38PM
Credit: An anonymous researcher reported this issue.
Vulnerable: HP HP-UX B.11.31
HP HP-UX B.11.23
HP HP-UX B.11.11
Gentoo Linux
Cisco Wireless Control System Software 4.0.96
Cisco Wireless Control System Software 4.0.96
Cisco Wireless Control System Software 4.0.95
Cisco Wireless Control System Software 4.0
Cisco Wireless Control System Software 4.0
Cisco Wireless Control System Software 4.1
Cisco Wireless Control System Software 3.2
Cisco Wireless Control System for Windows 0
Cisco Wireless Control System for Linux 0
Cisco Wireless Control System 4.2
Cisco Wireless Control System 4.1.91.0
Cisco Wireless Control System 0
Apache Software Foundation Tomcat 5.5.20
+ Gentoo Linux 1.4 _rc3
+ Gentoo Linux 1.4 _rc2
+ Gentoo Linux 1.4 _rc1
+ Gentoo Linux 1.2
Apache Software Foundation Tomcat 4.1.34
+ Gentoo Linux 1.4 _rc3
+ Gentoo Linux 1.4 _rc2
+ Gentoo Linux 1.4 _rc1
+ Gentoo Linux 1.2
Apache Software Foundation mod_jk 1.2.20
Apache Software Foundation mod_jk 1.2.19
Not Vulnerable: Cisco Wireless Control System 4.2.62 .0
Cisco Wireless Control System 4.0.100 .0
Apache Software Foundation mod_jk 1.2.21


 

Privacy Statement
Copyright 2010, SecurityFocus