CVE-2011-2729
Apache Tomcat 5.5.32-5.5.33, 6.0.30-6.0.32, 7.0.x < 7.0.20 - Unauthenticated File Read via jsvc Capabilities Bypass
Title source: llmDescription
native/unix/native/jsvc-unix.c in jsvc in the Daemon component 1.0.3 through 1.0.6 in Apache Commons, as used in Apache Tomcat 5.5.32 through 5.5.33, 6.0.30 through 6.0.32, and 7.0.x before 7.0.20 on Linux, does not drop capabilities, which allows remote attackers to bypass read permissions for files via a request to an application.
References (30)
Core 30
Core References
Patch x_refsource_confirm
http://svn.apache.org/viewvc?view=revision&revision=1153824
Patch x_refsource_confirm
http://svn.apache.org/viewvc?view=revision&revision=1153379
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/69161
Mailing List vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00024.html
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=136485229118404&w=2
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1025925
Various Sources x_refsource_confirm
http://people.apache.org/~markt/patches/2011-08-12-cve2011-2729-tc5.patch
Vendor Advisory x_refsource_confirm
http://tomcat.apache.org/security-7.html
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=133469267822771&w=2
Issue Tracking x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=730400
Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-1291.html
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=132215163318824&w=2
Patch x_refsource_confirm
http://svn.apache.org/viewvc?view=revision&revision=1152701
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/519263/100/0/threaded
Vendor Advisory x_refsource_confirm
http://tomcat.apache.org/security-6.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/57126
Various Sources mailing-list
x_refsource_mlist
http://mail-archives.apache.org/mod_mbox/commons-dev/201108.mbox/%3C4E451B2B.9090108%40apache.org%3E
Various Sources x_refsource_confirm
https://issues.apache.org/jira/browse/DAEMON-214
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/49143
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19450
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/46030
Vendor Advisory x_refsource_confirm
http://tomcat.apache.org/security-5.html
Vendor Advisory vendor-advisory
x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-1292.html
Various Sources mailing-list
x_refsource_mlist
http://mail-archives.apache.org/mod_mbox/tomcat-announce/201108.mbox/%3C4E45221D.1020306%40apache.org%3E
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=139344343412337&w=2
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14743
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E
Mailing List mailing-list
x_refsource_mlist
https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E
Scores
EPSS
0.0724
EPSS Percentile
93.6%
Details
CWE
CWE-264
Status
published
Products (27)
apache/apache_commons_daemon
1.0.3
apache/apache_commons_daemon
1.0.4
apache/apache_commons_daemon
1.0.5
apache/apache_commons_daemon
1.0.6
apache/tomcat
5.5.32
apache/tomcat
5.5.33
apache/tomcat
6.0.30
apache/tomcat
6.0.31
apache/tomcat
6.0.32
apache/tomcat
7.0.0 (2 CPE variants)
... and 17 more
Published
Aug 15, 2011
Tracked Since
Feb 18, 2026