CVE-2011-1184

Authentication Bypass in Apache Tomcat in maven/org.apache.tomcat/tomcat

Identifiers

GHSA-q9xf-jwr4-v445, CVE-2011-1184

Package Slug

maven/org.apache.tomcat/tomcat

Vulnerability

Authentication Bypass in Apache Tomcat

Description

The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not have the expected countermeasures against replay attacks, which makes it easier for remote attackers to bypass intended access restrictions by sniffing the network for valid requests, related to lack of checking of nonce (aka server nonce) and nc (aka nonce-count or client nonce count) values.

Affected Versions

All versions starting from 5.5.0 before 5.5.34, all versions starting from 6.0.0 before 6.0.33, all versions starting from 7.0.0 before 7.0.12

Solution

Upgrade to versions 5.5.34, 6.0.33, 7.0.12 or above.

Last Modified

2022-07-25

source