Exploitation Summary
EIP tracks 1 public exploit for CVE-2010-1157. PoCs published by Deniz Cevik.
AI-analyzed exploit summary This is a writeup describing CVE-2020-1157, an information disclosure vulnerability in Apache Tomcat where the default realm name in authentication headers may expose the server's hostname or IP address. The document provides affected versions, mitigation steps, and references.
Description
Apache Tomcat 5.5.0 through 5.5.29 and 6.0.0 through 6.0.26 might allow remote attackers to discover the server's hostname or IP address by sending a request for a resource that requires (1) BASIC or (2) DIGEST authentication, and then reading the realm field in the WWW-Authenticate header in the reply.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Deniz Cevik · textremotemultiple
https://www.exploit-db.com/exploits/12343
This is a writeup describing CVE-2020-1157, an information disclosure vulnerability in Apache Tomcat where the default realm name in authentication headers may expose the server's hostname or IP address. The document provides affected versions, mitigation steps, and references.
Classification
Writeup 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target:
Apache Tomcat 6.0.0 to 6.0.26, 5.5.0 to 5.5.29
No auth needed
Prerequisites:
Tomcat server with BASIC or DIGEST authentication enabled and no custom realm name set in web.xml
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (32)
Core 32
Core References
Mailing List vendor-advisory
x_refsource_apple
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/510879/100/0/threaded
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2011/dsa-2207
Patch x_refsource_confirm
http://svn.apache.org/viewvc?view=revision&revision=936540
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=136485229118404&w=2
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2010:177
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2010/3056
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/43310
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/39574
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=133469267822771&w=2
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2010:176
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/42368
Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-0897.html
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2010/0980
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19492
Patch, Vendor Advisory x_refsource_confirm
http://tomcat.apache.org/security-6.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/57126
Vendor Advisory x_refsource_confirm
http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html
Patch x_refsource_confirm
http://svn.apache.org/viewvc?view=revision&revision=936541
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/39635
Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-0896.html
Patch, Vendor Advisory x_refsource_confirm
http://tomcat.apache.org/security-5.html
Vendor Advisory x_refsource_confirm
http://www.vmware.com/security/advisories/VMSA-2011-0003.html
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=129070310906557&w=2
Vendor Advisory x_refsource_confirm
http://support.apple.com/kb/HT5002
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/516397/100/0/threaded
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=139344343412337&w=2
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E
Scores
EPSS
0.2165
EPSS Percentile
95.9%
Details
CWE
CWE-200
Status
published
Products (50)
apache/tomcat
5.5.0
apache/tomcat
5.5.1
apache/tomcat
5.5.2
apache/tomcat
5.5.3
apache/tomcat
5.5.4
apache/tomcat
5.5.5
apache/tomcat
5.5.6
apache/tomcat
5.5.7
apache/tomcat
5.5.8
apache/tomcat
5.5.9
... and 40 more
Published
Apr 23, 2010
Tracked Since
Feb 18, 2026