Signature Detail

HTTP: Apache Tomcat Directory Listing Information Disclosure

This signature detects attempts to exploit a known vulnerability against Apache Tomcat. A successful attack allows attackers to list the directory content.

Extended Description

Apache Tomcat is prone to an information-disclosure vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to reveal a complete directory listing from any directory. Information obtained may aid in further attacks. Reports indicate that this issue may also allow attackers to obtain the source code of script files. Apache Tomcat 5.028, 5.5.23, 5.5.9, and 5.5.7 are vulnerable to this issue; other versions may also be affected. Novell GroupWise Mobile Server 1.0 or other versions bundled with Nokia Intellisync Mobile Suite 6.4.31.2, 6.6.0.107, and 6.6.2.2 ship with an affected version of Tomcat and are vulnerable as well.

Affected Products

• Apache Software Foundation Tomcat 5.0.28
• Apache Software Foundation Tomcat 5.5.12
• Apache Software Foundation Tomcat 5.5.16
• Apache Software Foundation Tomcat 5.5.7
• Apache Software Foundation Tomcat 5.5.9
• Avaya Aura Application Enablement Services 3.1
• Avaya Aura Application Enablement Services 4.0
• Computer Associates Cohesion Application Configuration Manager 4.5
• Novell GroupWise Mobile Server 1.0
• Red Hat Certificate Server 7.3
• Red Hat Network Satellite (for RHEL 3) 4.2
• Red Hat Network Satellite (for RHEL 4) 4.2
• Red Hat Red Hat Network Satellite Server 4.0
• Red Hat Red Hat Network Satellite Server 4.1
• Red Hat Red Hat Network Satellite Server 4.2
• Red Hat Red Hat Network Satellite Server 5.0.0
• Sun Solaris 10 Sparc
• Sun Solaris 10 X86
• Sun Solaris 9 Sparc
• Sun Solaris 9 X86
• SuSE SUSE Linux Enterprise Server 9

References

• BugTraq: 19106
• CVE: CVE-2006-3835