ALAS-2016-658 ---- tomcat8ID: oval:org.secpod.oval:def:1600343 | Date: (C)2016-05-19 (M)2023-12-14 |
Class: PATCH | Family: unix |
A directory traversal vulnerability in RequestUtil.java was discovered which allows remote authenticated users to bypass intended SecurityManager restrictions and list a parent directory via a /.. in a pathname used by a web application in a getResource, getResourceAsStream, or getResourcePaths call. The Mapper component processes redirects before considering security constraints and Filters, which allows remote attackers to determine the existence of a directory via a URL that lacks a trailing / character. It was found that the expression language resolver evaluated expressions within a privileged code section. A malicious web application could use this flaw to bypass security manager protections
Platform: |
Amazon Linux AMI |