Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Apache Tomcat Permissions Privileges and Access Controls Vulnerability - CVE-2011-3376 - Vulnerability Database
Apache Tomcat

Apache Tomcat Permissions Privileges and Access Controls Vulnerability - CVE-2011-3376

Medium
Reference: CVE-2011-3376
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2011-3376
Title: Apache Tomcat Permissions Privileges and Access Controls Vulnerability
Overview:

org/apache/catalina/core/DefaultInstanceManager.java in Apache Tomcat 7.x before 7.0.22 does not properly restrict ContainerServlets in the Manager application which allows local users to gain privileges by using an untrusted web application to access the Manager application39s functionality.