CVE-2005-4838

Properties

Published:
30.12.2005
Updated:
23.08.2007
Patch available:
Severity:
Medium
CVSS vector:
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Product:
Apache: Tomcat

Vulnerability description

Multiple cross-site scripting (XSS) vulnerabilities in the example web applications for Jakarta Tomcat 5.5.6 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) el/functions.jsp, (2) el/implicit-objects.jsp, and (3) jspx/textRotate.jspx in examples/jsp2/, as demonstrated via script in a request to snp/snoop.jsp.  NOTE: other XSS issues in the manager were simultaneously reported, but these require admin access and do not cross privilege boundaries.

References:

http://www.oliverkarow.de/research/jakarta556_xss.txt: http://www.oliverkarow.de/research/jakarta556_xss.txt
MLIST: http://marc.info/?l=tomcat-dev&m=110476790331536&w=2
MLIST: http://marc.info/?l=tomcat-dev&m=110477195116951&w=2
SECUNIA: http://secunia.com/advisories/13737
http://tomcat.apache.org/security-4.html: http://tomcat.apache.org/security-4.html
http://tomcat.apache.org/security-5.html: http://tomcat.apache.org/security-5.html