漏洞信息详情

Apache Tomcat 拒绝服务漏洞

漏洞简介

Apache Tomcat 5.x之前的版本,允许远程攻击者通过精心编制的针对TCP端口8007的AJP12数据包来引起拒绝服务(应用程序崩溃)攻击。

漏洞公告

目前厂商已经发布了升级补丁以修复这个安全问题,补丁下载链接:

Apache Software Foundation Tomcat 3.0

Apache Software Foundation Tomcat 5.5.8

http://jakarta.apache.org/site/downloads/downloads_tomcat-5.cgi

Apache Software Foundation Tomcat 3.1

Apache Software Foundation Tomcat 5.5.8

http://jakarta.apache.org/site/downloads/downloads_tomcat-5.cgi

Apache Software Foundation Tomcat 3.1.1

Apache Software Foundation Tomcat 5.5.8

http://jakarta.apache.org/site/downloads/downloads_tomcat-5.cgi

Apache Software Foundation Tomcat 3.2

Apache Software Foundation Tomcat 5.5.8

http://jakarta.apache.org/site/downloads/downloads_tomcat-5.cgi

Apache Software Foundation Tomcat 3.2.1

Apache Software Foundation Tomcat 5.5.8

http://jakarta.apache.org/site/downloads/downloads_tomcat-5.cgi

Apache Software Foundation Tomcat 3.2.2 beta2

Apache Software Foundation Tomcat 5.5.8

http://jakarta.apache.org/site/downloads/downloads_tomcat-5.cgi

Apache Software Foundation Tomcat 3.2.3

Apache Software Foundation Tomcat 5.5.8

http://jakarta.apache.org/site/downloads/downloads_tomcat-5.cgi

Apache Software Foundation Tomcat 3.2.4

Apache Software Foundation Tomcat 5.5.8

http://jakarta.apache.org/site/downloads/downloads_tomcat-5.cgi

Apache Software Foundation Tomcat 3.3

Apache Software Foundation Tomcat 5.5.8

http://jakarta.apache.org/site/downloads/downloads_tomcat-5.cgi

Apache Software Foundation Tomcat 3.3.1

Apache Software Foundation Tomcat 5.5.8

http://jakarta.apache.org/site/downloads/downloads_tomcat-5.cgi

Apache Software Foundation Tomcat 3.3.1 a

Apache Software Foundation Tomcat 5.5.8

http://jakarta.apache.org/site/downloads/downloads_tomcat-5.cgi

参考网址

来源: US-CERT

链接:http://www.kb.cert.org/vuls/id/JGEI-6A2LEF

来源: US-CERT

名称: VU#204710

链接:http://www.kb.cert.org/vuls/id/204710

来源: XF

名称: tomcat-manager-ajp12-dos(19681)

链接:http://xforce.iss.net/xforce/xfdb/19681

来源: BID

名称: 12795

链接:http://www.securityfocus.com/bid/12795

来源: www.hitachi-support.com

链接:http://www.hitachi-support.com/security_e/vuls_e/HS05-006_e/index-e.html

补丁

    暂无

漏洞信息快速查询

相关漏洞

更多