HackDig : Dig high-quality web security articles for hacker

Hurry up,fix the CVE-2016-5425 privilege escalation flaw in Apache Tomcat

The security research Dawid Golunski reported a Root Privilege Escalation in the Apache Tomcat (RedHat-based distros) tracked as CVE-2016-5425. Apache Tomcat packages provided by default repositories of RedHat-based distributions (i.e. CentOS, RedHat, OracleLinux, Fedora, etc.) create a tmpfiles.d configuration file with insecure permissions. The configurati
Publish At:2016-10-11 22:00 | Read:4885 | Comments:0 | Tags:Breaking News Hacking Apache Tomcat CVE-2016-5425 privilege

Apache Warns of Tomcat Remote Code Execution Vulnerability

Some older versions of the open source Apache Tomcat web server and servlet container, are vulnerable to remote code execution.In what Mark Thomas, a longtime Apache Tomcat committer, calls “limited circumstances,” a user could upload malicious JavaServer Pages (JSP) to a server running Tomcat, and then later trigger the execution of that JSP. JSP shells can
Publish At:2014-09-11 05:00 | Read:4176 | Comments:0 | Tags:Vulnerabilities Web Security Apache Apache Tomcat remote cod


Share high-quality web security related articles with you:)


Tag Cloud