The default catalina.policy in the JULI logging component in Apache Tomcat 5.5.9 up to and including 5.5.25 and 6.0.0 up to and including 6.0.15 does not restrict certain permissions for web applications, which allows malicious users to modify logging configuration options and overwrite arbitrary files, as demonstrated by changing the (1) level, (2) directory, and (3) prefix attributes in the org.apache.juli.FileHandler handler.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
apache tomcat 5.5.18 |
||
apache tomcat 6.0.6 |
||
apache tomcat 6.0.11 |
||
apache tomcat 5.5.12 |
||
apache tomcat 5.5.14 |
||
apache tomcat 5.5.10 |
||
apache tomcat 6.0.7 |
||
apache tomcat 5.5.11 |
||
apache tomcat 6.0.4 |
||
apache tomcat 5.5.20 |
||
apache tomcat 5.5.15 |
||
apache tomcat 6.0.15 |
||
apache tomcat 5.5.21 |
||
apache tomcat 5.5.22 |
||
apache tomcat 6.0.10 |
||
apache tomcat 6.0.3 |
||
apache tomcat 6.0.9 |
||
apache tomcat 6.0 |
||
apache tomcat 5.5.9 |
||
apache tomcat 5.5.25 |
||
apache tomcat 6.0.14 |
||
apache tomcat 5.5.13 |
||
apache tomcat 6.0.1 |
||
apache tomcat 6.0.12 |
||
apache tomcat 5.5.24 |
||
apache tomcat 5.5.16 |
||
apache tomcat 6.0.5 |
||
apache tomcat 5.5.17 |
||
apache tomcat 5.5.19 |
||
apache tomcat 6.0.2 |
||
apache tomcat 6.0.13 |
||
apache tomcat 5.5.23 |
||
apache tomcat 6.0.8 |
Vulmon