CVE-2011-1475

Apache Tomcat <7.0.12 - SSRF

Title source: llm

Description

The HTTP BIO connector in Apache Tomcat 7.0.x before 7.0.12 does not properly handle HTTP pipelining, which allows remote attackers to read responses intended for other clients in opportunistic circumstances by examining the application data in HTTP packets, related to "a mix-up of responses for requests from different users."

Exploits (1)

nomisec STUB

by samaujs · poc

https://github.com/samaujs/CVE-2011-1475

View Code ZIP pw:eip

References (12)

[Mailing List] http://seclists.org/fulldisclosure/2011/Apr/97

[Patch] http://svn.apache.org/viewvc?view=revision&revision=1086349

[Patch] http://svn.apache.org/viewvc?view=revision&revision=1086352

[Vendor Advisory] http://tomcat.apache.org/security-7.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/66676

[Various Sources] https://issues.apache.org/bugzilla/show_bug.cgi?id=50957

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12374

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/517363

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/47199

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1025303

[Third Party Advisory] http://www.vupen.com/english/advisories/2011/0894

[Third Party Advisory] http://securityreason.com/securityalert/8188

Scores

EPSS 0.1170

EPSS Percentile 93.7%

Details

CWE

CWE-20

Status published

Products (13)

apache/tomcat 7.0.0 (2 CPE variants)

apache/tomcat 7.0.1

apache/tomcat 7.0.2

apache/tomcat 7.0.3

apache/tomcat 7.0.4

apache/tomcat 7.0.5

apache/tomcat 7.0.6

apache/tomcat 7.0.7

apache/tomcat 7.0.8

apache/tomcat 7.0.9

... and 3 more

Published Apr 08, 2011

Tracked Since Feb 18, 2026