what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Red Hat Security Advisory 2013-0870-01 https://packetstormsecurity.com/files/121764/RHSA-2013-0870-01.txt https://packetstormsecurity.com/files/121764/RHSA-2013-0870-01.txt https://packetstormsecurity.com/files/121764/Red-Hat-Security-Advisory-2013-0870-01.html Tue, 28 May 2013 19:47:43 GMT Red Hat Security Advisory 2013-0870-01 - Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages technologies. A flaw was found in the way the tomcat5 init script handled the catalina.out log file. A malicious web application deployed on Tomcat could use this flaw to perform a symbolic link attack to change the ownership of an arbitrary system file to that of the tomcat user, allowing them to escalate their privileges to root. Note: With this update, /var/log/tomcat5/catalina.out has been moved to the /var/log/tomcat5-initd.log file.

Related Files

No related files
packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close