[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247621

 
 

909

 
 

194512

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2012-5885Date: (C)2012-11-18   (M)2023-12-22


The replay-countermeasure functionality in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.36, 6.x before 6.0.36, and 7.x before 7.0.30 tracks cnonce (aka client nonce) values instead of nonce (aka server nonce) and nc (aka nonce-count) values, which makes it easier for remote attackers to bypass intended access restrictions by sniffing the network for valid requests, a different vulnerability than CVE-2011-1184.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: NONE
Availability: NONE
  
Reference:
SECUNIA-51371
BID-56403
HPSBUX02860
RHSA-2013:0623
RHSA-2013:0629
RHSA-2013:0631
RHSA-2013:0632
RHSA-2013:0633
RHSA-2013:0640
RHSA-2013:0647
RHSA-2013:0648
RHSA-2013:0726
SSRT101139
USN-1637-1
http://svn.apache.org/viewvc?view=revision&revision=1377807
http://svn.apache.org/viewvc?view=revision&revision=1380829
http://svn.apache.org/viewvc?view=revision&revision=1392248
http://tomcat.apache.org/security-5.html
http://tomcat.apache.org/security-6.html
http://tomcat.apache.org/security-7.html
http://www-01.ibm.com/support/docview.wss?uid=swg21626891
openSUSE-SU-2012:1700
openSUSE-SU-2012:1701
openSUSE-SU-2013:0147
oval:org.mitre.oval:def:19432
tomcat-replay-security-bypass(80408)

CPE    107
cpe:/a:apache:tomcat:6.0.6:alpha
cpe:/a:apache:tomcat:6.0
cpe:/a:apache:tomcat:6.0.0:alpha
cpe:/a:apache:tomcat:6.0.9:beta
...
CWE    1
CWE-264
OVAL    11
oval:org.secpod.oval:def:1300151
oval:org.secpod.oval:def:601073
oval:org.secpod.oval:def:104396
oval:org.secpod.oval:def:701077
...

© SecPod Technologies