CVE-2007-0774 in Tomcat JK Web Server Connectorinfo

Zusammenfassung

von MITRE

Stack-based buffer overflow in the map_uri_to_worker function (native/common/jk_uri_worker_map.c) in mod_jk.so for Apache Tomcat JK Web Server Connector 1.2.19 and 1.2.20, as used in Tomcat 4.1.34 and 5.5.20, allows remote attackers to execute arbitrary code via a long URL that triggers the overflow in a URI worker map routine.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

06.02.2007

Veröffentlichung

04.03.2007

Moderieren

akzeptiert

Eintrag

VDB-35402

CPE

bereit

CWE

CWE-121 (bestätigt)

Exploit

Download

CVSS

7.5 (NVD)

EPSS

0.81513

KEV

nein

Aktivitäten

very low

Sektor

Education, Police, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-0774
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0774
CVE Details	https://www.cvedetails.com/cve/CVE-2007-0774/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!