java/org/apache/catalina/core/AsyncContextImpl.java in Apache Tomcat 7.x before 7.0.40 does not properly handle the throwing of a RuntimeException in an AsyncListener in an application, which allows context-dependent attackers to obtain sensitive request information intended for other applications in opportunistic circumstances via an application that records the requests that it processes.
The MITRE CVE dictionary describes this issue as:
Find out more about CVE-2013-2071 from the MITRE CVE dictionary dictionary and NIST NVD.
This flaw only affects tomcat 7. Tomcat 5 and 6 are not affected. The jbossweb servlet container is also not affected.
| Base Score | 2.6 |
|---|---|
| Base Metrics | AV:N/AC:H/Au:N/C:P/I:N/A:N |
| Access Vector | Network |
| Access Complexity | High |
| Authentication | None |
| Confidentiality Impact | Partial |
| Integrity Impact | None |
| Availability Impact | None |
Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).
| Platform | Errata | Release Date |
|---|---|---|
| Red Hat JBoss Enterprise Web Server 2 for RHEL 5 Server | RHSA-2013:1011 | 2013-07-03 |
| Red Hat JBoss Web Server 2.0 | RHSA-2013:1013 | 2013-07-03 |
| Red Hat JBoss Enterprise Web Server 2 for RHEL 6 Server | RHSA-2013:1012 | 2013-07-03 |
| Platform | Package | State |
|---|---|---|
| Red Hat JBoss EWS 1 | tomcat6 | Not affected |
| Red Hat JBoss EWS 1 | tomcat5 | Not affected |
| Red Hat Enterprise Linux 6 | tomcat6 | Not affected |
| Red Hat Enterprise Linux 5 | tomcat5 | Not affected |
Vulmon