Apache Tomcat Mod_JK.SO Arbitrary Code Execution Vulnerability

Bugtraq ID: 22791
Class: Design Error
CVE: CVE-2007-0774
Remote: Yes
Local: No
Published: Mar 02 2007 12:00AM
Updated: Jul 21 2008 05:38PM
Credit: An anonymous researcher reported this issue.
Vulnerable: HP HP-UX B.11.31
HP HP-UX B.11.23
HP HP-UX B.11.11
Gentoo Linux
Cisco Wireless Control System Software 4.0.96
Cisco Wireless Control System Software 4.0.96
Cisco Wireless Control System Software 4.0.95
Cisco Wireless Control System Software 4.0
Cisco Wireless Control System Software 4.0
Cisco Wireless Control System Software 4.1
Cisco Wireless Control System Software 3.2
Cisco Wireless Control System for Windows 0
Cisco Wireless Control System for Linux 0
Cisco Wireless Control System 4.2
Cisco Wireless Control System 4.1.91.0
Cisco Wireless Control System 0
Apache Tomcat 5.5.20
+ Gentoo Linux 1.4 _rc3
+ Gentoo Linux 1.4 _rc2
+ Gentoo Linux 1.4 _rc1
+ Gentoo Linux 1.2
Apache Tomcat 4.1.34
+ Gentoo Linux 1.4 _rc3
+ Gentoo Linux 1.4 _rc2
+ Gentoo Linux 1.4 _rc1
+ Gentoo Linux 1.2
Apache mod_jk 1.2.20
Apache mod_jk 1.2.19
Not Vulnerable: Cisco Wireless Control System 4.2.62 .0
Cisco Wireless Control System 4.0.100 .0
Apache mod_jk 1.2.21


 

Privacy Statement
Copyright 2010, SecurityFocus