FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2005-2090

This CVE name corresponds to:

Entered Topic
2007-07-24 tomcat -- multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2005-2090 at cve.mitre.org

Details

Type Candidate
Name CVE-2005-2090
Phase Assigned(20050630)

Description

Jakarta Tomcat 5.0.19 (Coyote/1.1) and Tomcat 4.1.24 (Coyote/1.0) allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes Tomcat to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."

References

Source Reference
BUGTRAQ 20050606 A new whitepaper by Watchfire - HTTP Request Smuggling
BUGTRAQ 20080108 VMSA-2008-0002 Low severity security update for VirtualCenter and ESX Server 3.0.2, and ESX 3.0.1
BUGTRAQ 20090127 CA20090123-01: Cohesion Tomcat Multiple Vulnerabilities (Updated - v1.1)
BUGTRAQ 20090124 CA20090123-01: Cohesion Tomcat Multiple Vulnerabilities
MLIST [Security-announce] 20080107 VMSA-2008-0002 Low severity security update for VirtualCenter and ESX Server 3.0.2, and ESX 3.0.1
MISC http://www.watchfire.com/resources/HTTP-Request-Smuggling.pdf
MISC http://www.securiteam.com/securityreviews/5GP0220G0U.html
CONFIRM http://tomcat.apache.org/security-4.html
CONFIRM http://tomcat.apache.org/security-5.html
CONFIRM http://tomcat.apache.org/security-6.html
CONFIRM http://docs.info.apple.com/article.html?artnum=306172
CONFIRM http://www.fujitsu.com/global/support/software/security/products-f/interstage-200703e.html
CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2007-206.htm
CONFIRM http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx
CONFIRM http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197540
APPLE APPLE-SA-2007-07-31
HP HPSBUX02262
HP SSRT071447
REDHAT RHSA-2007:0327
REDHAT RHSA-2007:0360
REDHAT RHSA-2008:0261
SUNALERT 239312
SUSE SUSE-SR:2008:005
BID 25159
BID 13873
OVAL oval:org.mitre.oval:def:10499
VUPEN ADV-2007-2732
VUPEN ADV-2007-3087
VUPEN ADV-2007-3386
VUPEN ADV-2008-0065
VUPEN ADV-2008-1979
VUPEN ADV-2009-0233
SECTRACK 1014365
SECUNIA 26235
SECUNIA 26660
SECUNIA 27037
SECUNIA 28365
SECUNIA 29242
SECUNIA 30908
SECUNIA 30899
SECUNIA 33668

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.