Published: 23/03/2017 Updated: 02/08/2018

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The postinst script in the tomcat6 package prior to 6.0.45+dfsg-1~deb7u4 on Debian wheezy, prior to 6.0.35-1ubuntu3.9 on Ubuntu 12.04 LTS and on Ubuntu 14.04 LTS; the tomcat7 package prior to 7.0.28-4+deb7u8 on Debian wheezy, prior to 7.0.56-3+deb8u6 on Debian jessie, prior to 7.0.52-1ubuntu0.8 on Ubuntu 14.04 LTS, and on Ubuntu 12.04 LTS, 16.04 LTS, and 16.10; and the tomcat8 package prior to 8.0.14-1+deb8u5 on Debian jessie, prior to 8.0.32-1ubuntu1.3 on Ubuntu 16.04 LTS, prior to 8.0.37-1ubuntu0.1 on Ubuntu 16.10, and prior to 8.0.38-2ubuntu1 on Ubuntu 17.04 might allow local users with access to the tomcat account to obtain sensitive information or gain root privileges via a symlink attack on the Catalina localhost directory.

Vulnerable Product	Search on Vulmon	Subscribe to Product
debian debian linux 8.0
debian debian linux 7.0
canonical ubuntu linux 12.04
canonical ubuntu linux 14.04
canonical ubuntu linux 16.04
canonical ubuntu linux 16.10
apache tomcat 7.0
apache tomcat 8.0
apache tomcat 6.0

Debian Bug report logs - #845393 CVE-2016-9774: privilege escalation via upgrade Package: tomcat8; Maintainer for tomcat8 is Debian Java Maintainers <pkg-java-maintainers@listsaliothdebianorg>; Source for tomcat8 is src:tomcat8 (PTS, buildd, popcon) Reported by: Paul Szabo <paulszabo@sydneyeduau> Date: Tue, 22 ...

Debian Bug report logs - #845385 CVE-2016-9775: privilege escalation via removal Package: tomcat8; Maintainer for tomcat8 is Debian Java Maintainers <pkg-java-maintainers@listsaliothdebianorg>; Source for tomcat8 is src:tomcat8 (PTS, buildd, popcon) Reported by: Paul Szabo <paulszabo@sydneyeduau> Date: Tue, 22 ...

USN-3177-1 introduced a regression in Tomcat ...

Several security issues were fixed in Tomcat ...

Multiple security vulnerabilities were discovered in the Tomcat servlet and JSP engine, as well as in its Debian-specific maintainer scripts Those flaws allowed for privilege escalation, information disclosure, and remote code execution As part of this update, several regressions stemming from incomplete fixes for previous vulnerabilities were al ...

CWE-59 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=845393 http://www.ubuntu.com/usn/USN-3177-2 http://www.ubuntu.com/usn/USN-3177-1 http://www.securityfocus.com/bid/94643 http://www.openwall.com/lists/oss-security/2016/12/02/5 http://www.openwall.com/lists/oss-security/2016/12/02/10 http://www.debian.org/security/2016/dsa-3739 http://www.debian.org/security/2016/dsa-3738 https://security.netapp.com/advisory/ntap-20180731-0002/https://nvd.nist.gov https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=845393 https://usn.ubuntu.com/3177-2/

CVE-2016-9774

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect