CVE-2016-0763

The setGlobalContext method in org/apache/naming/factory/ResourceLinkFactory.java in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M3 does not consider whether ResourceLinkFactory.setGlobalContext callers are authorized, which allows remote authenticated users to bypass intended SecurityManager restrictions and read or write to arbitrary application data, or cause a denial of service (application disruption), via a web application that sets a crafted global context.

CVSS v3.0 6.3 MEDIUM
CVSS v2.0 6.5 MEDIUM

6.3^/10

CVSS v3.0 : MEDIUM

V3 Legend

Vector : AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Exploitability : 2.8 / Impact : 3.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

6.5^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:S/C:P/I:P/A:P

Exploitability : 8.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://svn.apache.org/viewvc?view=revision&revision=1725931
http://svn.apache.org/viewvc?view=revision&revision=1725929
http://tomcat.apache.org/security-8.html	Vendor Advisory
http://tomcat.apache.org/security-9.html	Vendor Advisory
http://tomcat.apache.org/security-7.html	Vendor Advisory
http://seclists.org/bugtraq/2016/Feb/147
http://svn.apache.org/viewvc?view=revision&revision=1725926
http://www.debian.org/security/2016/dsa-3530
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158626
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150442
http://www.debian.org/security/2016/dsa-3609
http://www.ubuntu.com/usn/USN-3024-1
http://www.debian.org/security/2016/dsa-3552
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05324755
http://www.securityfocus.com/bid/83326
https://access.redhat.com/errata/RHSA-2016:1087
http://rhn.redhat.com/errata/RHSA-2016-1089.html
https://access.redhat.com/errata/RHSA-2016:1088
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00069.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00047.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00085.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179356.html
https://bto.bluecoat.com/security-advisory/sa118
http://www.securitytracker.com/id/1035069
https://security.gentoo.org/glsa/201705-09
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html
http://rhn.redhat.com/errata/RHSA-2016-2808.html
http://rhn.redhat.com/errata/RHSA-2016-2807.html
http://rhn.redhat.com/errata/RHSA-2016-2599.html
https://security.netapp.com/advisory/ntap-20180531-0001/
https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551%40%3Cdev.tomcat.apache.org%3E
https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c%40%3Cdev.tomcat.apache.org%3E

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:debian:debian_linux:8.0:::::::*
	cpe:2.3:o:debian:debian_linux:7.0:::::::*

Configuration 2 (hide)

OR	cpe:2.3:a:apache:tomcat:7.0.2:beta::::::
	cpe:2.3:a:apache:tomcat:8.0.30:::::::*
	cpe:2.3:a:apache:tomcat:7.0.12:::::::*
	cpe:2.3:a:apache:tomcat:7.0.62:::::::*
	cpe:2.3:a:apache:tomcat:8.0.17:::::::*
	cpe:2.3:a:apache:tomcat:7.0.53:::::::*
	cpe:2.3:a:apache:tomcat:7.0.20:::::::*
	cpe:2.3:a:apache:tomcat:7.0.34:::::::*
	cpe:2.3:a:apache:tomcat:8.0.26:::::::*
	cpe:2.3:a:apache:tomcat:7.0.55:::::::*
	cpe:2.3:a:apache:tomcat:7.0.4:beta::::::
	cpe:2.3:a:apache:tomcat:7.0.63:::::::*
	cpe:2.3:a:apache:tomcat:8.0.20:::::::*
	cpe:2.3:a:apache:tomcat:7.0.22:::::::*
	cpe:2.3:a:apache:tomcat:7.0.39:::::::*
	cpe:2.3:a:apache:tomcat:7.0.26:::::::*
	cpe:2.3:a:apache:tomcat:7.0.28:::::::*
	cpe:2.3:a:apache:tomcat:8.0.1:::::::*
	cpe:2.3:a:apache:tomcat:8.0.0:rc3::::::
	cpe:2.3:a:apache:tomcat:7.0.59:::::::*
	cpe:2.3:a:apache:tomcat:7.0.65:::::::*
	cpe:2.3:a:apache:tomcat:7.0.50:::::::*
	cpe:2.3:a:apache:tomcat:7.0.6:::::::*
	cpe:2.3:a:apache:tomcat:8.0.12:::::::*
	cpe:2.3:a:apache:tomcat:7.0.14:::::::*
	cpe:2.3:a:apache:tomcat:8.0.27:::::::*
	cpe:2.3:a:apache:tomcat:8.0.15:::::::*
	cpe:2.3:a:apache:tomcat:7.0.11:::::::*
	cpe:2.3:a:apache:tomcat:7.0.67:::::::*
	cpe:2.3:a:apache:tomcat:8.0.0:rc1::::::
	cpe:2.3:a:apache:tomcat:7.0.23:::::::*
	cpe:2.3:a:apache:tomcat:7.0.0:beta::::::
	cpe:2.3:a:apache:tomcat:8.0.22:::::::*
	cpe:2.3:a:apache:tomcat:8.0.29:::::::*
	cpe:2.3:a:apache:tomcat:7.0.52:::::::*
	cpe:2.3:a:apache:tomcat:7.0.42:::::::*
	cpe:2.3:a:apache:tomcat:7.0.37:::::::*
	cpe:2.3:a:apache:tomcat:7.0.29:::::::*
	cpe:2.3:a:apache:tomcat:8.0.11:::::::*
	cpe:2.3:a:apache:tomcat:8.0.24:::::::*
	cpe:2.3:a:apache:tomcat:8.0.0:rc10::::::
	cpe:2.3:a:apache:tomcat:8.0.23:::::::*
	cpe:2.3:a:apache:tomcat:7.0.47:::::::*
	cpe:2.3:a:apache:tomcat:7.0.5:beta::::::
	cpe:2.3:a:apache:tomcat:8.0.21:::::::*
	cpe:2.3:a:apache:tomcat:7.0.41:::::::*
	cpe:2.3:a:apache:tomcat:7.0.30:::::::*
	cpe:2.3:a:apache:tomcat:7.0.19:::::::*
	cpe:2.3:a:apache:tomcat:7.0.16:::::::*
	cpe:2.3:a:apache:tomcat:7.0.10:::::::*
	cpe:2.3:a:apache:tomcat:8.0.18:::::::*
	cpe:2.3:a:apache:tomcat:7.0.25:::::::*
	cpe:2.3:a:apache:tomcat:7.0.54:::::::*
	cpe:2.3:a:apache:tomcat:7.0.35:::::::*
	cpe:2.3:a:apache:tomcat:7.0.61:::::::*
	cpe:2.3:a:apache:tomcat:8.0.3:::::::*
	cpe:2.3:a:apache:tomcat:7.0.57:::::::*
	cpe:2.3:a:apache:tomcat:8.0.14:::::::*
	cpe:2.3:a:apache:tomcat:8.0.0:rc5::::::
	cpe:2.3:a:apache:tomcat:7.0.32:::::::*
	cpe:2.3:a:apache:tomcat:7.0.21:::::::*
	cpe:2.3:a:apache:tomcat:7.0.27:::::::*
	cpe:2.3:a:apache:tomcat:7.0.40:::::::*
	cpe:2.3:a:apache:tomcat:7.0.56:::::::*
cpe:2.3:a:apache:tomcat:8.0.28:::::::*
cpe:2.3:a:apache:tomcat:7.0.64:::::::*
cpe:2.3:a:apache:tomcat:7.0.33:::::::*
cpe:2.3:a:apache:tomcat:9.0.0:milestone1::::::

Configuration 3 (hide)

OR	cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:15.10:::::::*
	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

History

08 Dec 2023, 16:41

Type	Values Removed	Values Added
CPE	cpe:2.3:a:apache:tomcat:9.0.0:m1::::::	cpe:2.3:a:apache:tomcat:9.0.0:milestone1::::::

07 Nov 2023, 02:29

Type	Values Removed	Values Added
References	{'url': 'https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551@%3Cdev.tomcat.apache.org%3E', 'name': '[tomcat-dev] 20190319 svn commit: r1855831 [25/30] - in /tomcat/site/trunk: ./ docs/ xdocs/', 'tags': [], 'refsource': 'MLIST'} {'url': 'https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c@%3Cdev.tomcat.apache.org%3E', 'name': '[tomcat-dev] 20200213 svn commit: r1873980 [27/34] - /tomcat/site/trunk/docs/', 'tags': [], 'refsource': 'MLIST'}	() https://lists.apache.org/thread.html/343558d982879bf88ec20dbf707f8c11255f8e219e81d45c4f8d0551%40%3Cdev.tomcat.apache.org%3E - () https://lists.apache.org/thread.html/r9136ff5b13e4f1941360b5a309efee2c114a14855578c3a2cbe5d19c%40%3Cdev.tomcat.apache.org%3E -

Information

Published : 2016-02-25 01:59

Updated : 2023-12-08 16:41

NVD link : CVE-2016-0763

Mitre link : CVE-2016-0763

JSON object : View

Products Affected

debian

debian_linux

apache

tomcat

canonical

ubuntu_linux

CWE

CWE-264

Permissions, Privileges, and Access Controls

6.3 /10