NVD Vulnerability Detail

CVE-2008-1947

Summary	Cross-site scripting (XSS) vulnerability in Apache Tomcat 5.5.9 through 5.5.26 and 6.0.0 through 6.0.16 allows remote attackers to inject arbitrary web script or HTML via the name parameter (aka the hostname attribute) to host-manager/html/add.
Publication Date	June 5, 2008, 4:32 a.m.
Registration Date	Jan. 29, 2021, 1:35 p.m.
Last Update	Feb. 13, 2023, 11:19 a.m.

CVSS2.0 : MEDIUM
Score	4.3
Vector	AV:N/AC:M/Au:N/C:N/I:P/A:N
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	中
攻撃前の認証要否(Au)	不要
機密性への影響(C)	なし
完全性への影響(I)	低
可用性への影響(A)	なし
Get all privileges.	いいえ
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	はい

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:apache:tomcat:5.5.18:::::::*
cpe:2.3:a:apache:tomcat:6.0.6:::::::*
cpe:2.3:a:apache:tomcat:6.0.11:::::::*
cpe:2.3:a:apache:tomcat:5.5.12:::::::*
cpe:2.3:a:apache:tomcat:5.5.14:::::::*
cpe:2.3:a:apache:tomcat:5.5.10:::::::*
cpe:2.3:a:apache:tomcat:6.0.7:::::::*
cpe:2.3:a:apache:tomcat:5.5.11:::::::*
cpe:2.3:a:apache:tomcat:6.0.4:::::::*
cpe:2.3:a:apache:tomcat:5.5.26:::::::*
cpe:2.3:a:apache:tomcat:5.5.20:::::::*
cpe:2.3:a:apache:tomcat:5.5.15:::::::*
cpe:2.3:a:apache:tomcat:6.0.15:::::::*
cpe:2.3:a:apache:tomcat:5.5.21:::::::*
cpe:2.3:a:apache:tomcat:5.5.22:::::::*
cpe:2.3:a:apache:tomcat:6.0.10:::::::*
cpe:2.3:a:apache:tomcat:6.0.3:::::::*
cpe:2.3:a:apache:tomcat:6.0.9:::::::*
cpe:2.3:a:apache:tomcat:5.5.9:::::::*
cpe:2.3:a:apache:tomcat:5.5.25:::::::*
cpe:2.3:a:apache:tomcat:6.0.0:::::::*
cpe:2.3:a:apache:tomcat:6.0.14:::::::*
cpe:2.3:a:apache:tomcat:5.5.13:::::::*
cpe:2.3:a:apache:tomcat:6.0.1:::::::*
cpe:2.3:a:apache:tomcat:6.0.12:::::::*
cpe:2.3:a:apache:tomcat:5.5.24:::::::*
cpe:2.3:a:apache:tomcat:5.5.16:::::::*
cpe:2.3:a:apache:tomcat:6.0.5:::::::*
cpe:2.3:a:apache:tomcat:5.5.17:::::::*
cpe:2.3:a:apache:tomcat:5.5.19:::::::*
cpe:2.3:a:apache:tomcat:6.0.2:::::::*
cpe:2.3:a:apache:tomcat:6.0.13:::::::*
cpe:2.3:a:apache:tomcat:5.5.23:::::::*
cpe:2.3:a:apache:tomcat:6.0.16:::::::*
cpe:2.3:a:apache:tomcat:6.0.8:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://marc.info/?l=tomcat-user&m=121244319501278&w=2	MLIST
2	http://tomcat.apache.org/security-5.html	CONFIRM
3	http://tomcat.apache.org/security-6.html	CONFIRM
4	http://secunia.com/advisories/30500	SECUNIA	Vendor Advisory
5	http://www.debian.org/security/2008/dsa-1593	DEBIAN
6	http://secunia.com/advisories/30592	SECUNIA	Vendor Advisory
7	http://secunia.com/advisories/30967	SECUNIA
8	http://www.mandriva.com/security/advisories?name=MDVSA-2008:188	MANDRIVA
9	http://www.redhat.com/support/errata/RHSA-2008-0648.html	REDHAT
10	http://www.securitytracker.com/id?1020624	SECTRACK
11	http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html	SUSE
12	http://www.securityfocus.com/bid/29502	BID
13	http://secunia.com/advisories/31639	SECUNIA
14	http://secunia.com/advisories/31891	SECUNIA
15	https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00859.html	FEDORA
16	https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00889.html	FEDORA
17	https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00712.html	FEDORA
18	http://secunia.com/advisories/31865	SECUNIA
19	http://www.redhat.com/support/errata/RHSA-2008-0862.html	REDHAT
20	http://www.redhat.com/support/errata/RHSA-2008-0864.html	REDHAT
21	http://www.securityfocus.com/bid/31681	BID
22	http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html	APPLE
23	http://secunia.com/advisories/32222	SECUNIA
24	http://support.apple.com/kb/HT3216	CONFIRM
25	http://support.avaya.com/elmodocs2/security/ASA-2008-401.htm	CONFIRM
26	http://marc.info/?l=bugtraq&m=123376588623823&w=2	HP
27	http://secunia.com/advisories/33797	SECUNIA
28	http://secunia.com/advisories/32120	SECUNIA
29	http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html	SUSE
30	http://secunia.com/advisories/32266	SECUNIA
31	http://secunia.com/advisories/34013	SECUNIA
32	http://secunia.com/advisories/33999	SECUNIA
33	http://www.vupen.com/english/advisories/2009/0503	VUPEN
34	http://www.vmware.com/security/advisories/VMSA-2009-0002.html	CONFIRM
35	http://www.vupen.com/english/advisories/2009/3316	VUPEN
36	http://secunia.com/advisories/37460	SECUNIA
37	http://www.vmware.com/security/advisories/VMSA-2009-0016.html	CONFIRM
38	http://www.vupen.com/english/advisories/2009/0320	VUPEN
39	http://www.vupen.com/english/advisories/2008/2823	VUPEN
40	http://www.vupen.com/english/advisories/2008/1725	VUPEN
41	http://www.vupen.com/english/advisories/2008/2780	VUPEN
42	http://marc.info/?l=bugtraq&m=139344343412337&w=2	HP
43	http://secunia.com/advisories/57126	SECUNIA
44	https://exchange.xforce.ibmcloud.com/vulnerabilities/42816	XF
45	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6009	OVAL
46	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11534	OVAL
47	http://www.securityfocus.com/archive/1/507985/100/0/threaded	BUGTRAQ
48	http://www.securityfocus.com/archive/1/492958/100/0/threaded	BUGTRAQ
49	https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E	MISC
50	https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E	MISC
51	https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E	MISC
52	https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E	MISC

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-79	クロスサイト・スクリプティング（XSS）	https://cwe.mitre.org/data/definitions/79.html

JVN Vulnerability Information

Apache Tomcat の host-manager におけるクロスサイトスクリプティングの脆弱性

Title	Apache Tomcat の host-manager におけるクロスサイトスクリプティングの脆弱性
Summary	Apache Tomcat の host-manager には、name パラメータ (ホスト名属性) の処理に問題があるため、クロスサイトスクリプティングの脆弱性が存在します。
Possible impacts	第三者により、任意の Web スクリプトまたは HTML を挿入される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	June 4, 2008, midnight
Registration Date	June 27, 2008, 1:38 p.m.
Last Update	March 25, 2015, 5:54 p.m.

Affected System

サン・マイクロシステムズ

OpenSolaris (sparc)

OpenSolaris (x86)

Sun Solaris 10 (sparc)

Sun Solaris 10 (x86)

Sun Solaris 9 (sparc)

Sun Solaris 9 (x86)

レッドハット

Red Hat Enterprise Linux 5 (server)

Red Hat Enterprise Linux Desktop 5.0 (client)

RHEL Desktop Workstation 5 (client)

ヒューレット・パッカード

HP XP P9000 Performance Advisor ソフトウェア 5.4.1 未満

Apache Software Foundation

Apache Tomcat 5.5.9-5.5.26

Apache Tomcat 6.0.0-6.0.16

サイバートラスト株式会社

Asianux Server 3 (x86-64)

Asianux Server 3 (x86)

アップル

Apple Mac OS X Server v10.5.5

VMware

VMware ESX 3.0.3

VMware ESX 3.5

VMware ESX 4.0

VMware Server 2.x

VMware vCenter 4.0

VMware VirtualCenter 2.0.2

VMware VirtualCenter 2.5

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2008-1947	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1947
National Vulnerability Database (NVD)
2	CVE-2008-1947	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-1947

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-79	https://jvndb.jvn.jp/ja/cwe/CWE-79.html

ベンダー情報

No	Name	URL
Apache Tomcat
1	Fixed in Apache Tomcat 5.5.SVN	http://tomcat.apache.org/security-5.html
2	Fixed in Apache Tomcat 6.0.SVN	http://tomcat.apache.org/security-6.html
Apple Mailing Lists
3	APPLE-SA-2008-10-09 Security Update 2008-007	http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html
Apple Security Updates
4	HT3216	http://support.apple.com/kb/HT3216
Apple セキュリティアップデート
5	HT3216	http://support.apple.com/kb/HT3216?viewlocale=ja_JP
Asianux Technical Support Network
6	tomcat5-5.5.23-0jpp.7.1.1AXS3	https://tsn.miraclelinux.com/tsn_local/index.php?m=errata&a=detail&eid=156
Avaya Support
7	ASA-2008-401	https://downloads.avaya.com/elmodocs2/security/ASA-2008-401.htm
HP Security Bulletin
8	HPSBST02955 SSRT101157	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c04047415
9	HPSBUX02401 SSRT090005	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01650939
Red Hat Security Advisory
10	RHSA-2008:0648	https://rhn.redhat.com/errata/RHSA-2008-0648.html
SECURITY BLOG
11	Multiple vulnerabilities in Oracle Java Web Console	https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_oracle_java1
Sun Alert Notification
12	251986	http://sunsolve.sun.com/search/document.do?assetkey=1-66-251986-1
VMware Security Advisories
13	VMSA-2009-0002	http://www.vmware.com/security/advisories/VMSA-2009-0002.html
14	VMSA-2009-0016	http://www.vmware.com/security/advisories/VMSA-2009-0016.html
レッドハットセキュリティーアップデート
15	RHSA-2008:0648	http://www.jp.redhat.com/support/errata/RHSA/RHSA-2008-0648J.html

その他

No	Name	URL
FrSIRT Advisories
1	FrSIRT/ADV-2008-1725	http://www.frsirt.com/english/advisories/2008/1725
ISS X-Force Database
2	42816	http://xforce.iss.net/xforce/xfdb/42816
Secunia Advisory
3	30500	http://secunia.com/advisories/30500

Change Log

No	Changed Details	Date of change
0	[2008年06月27日] 掲載 [2008年09月12日] 影響を受けるシステム：レッドハット (RHSA-2008:0648) の情報を追加ベンダ情報：レッドハット (RHSA-2008:0648) を追加 [2008年10月27日] 影響を受けるシステム：ミラクル・リナックス（tomcat5-5.5.23-0jpp.7.1.1AXS3）の情報を追加ベンダ情報：ミラクル・リナックス（tomcat5-5.5.23-0jpp.7.1.1AXS3）を追加 [2008年11月04日] 影響を受けるシステム：アップル（HT3216）の情報を追加ベンダ情報：アップル（HT3216）を追加 [2009年02月25日] 影響を受けるシステム：ヒューレット・パッカード (HPSBUX02401 SSRT090005) の情報を追加ベンダ情報：ヒューレット・パッカード (HPSBUX02401) を追加 [2009年03月27日] 影響を受けるシステム：サン・マイクロシステムズ (251986) の情報を追加ベンダ情報：サン・マイクロシステムズ (251986) を追加 [2010年01月05日] 影響を受けるシステム：VMware (VMSA-2009-0016) の情報を追加ベンダ情報：VMware (VMSA-2009-0016) を追加 [2012年09月24日] ベンダ情報：オラクル (Multiple vulnerabilities in Oracle Java Web Console) を追加 [2015年03月25日] 影響を受けるシステム：ベンダ情報の追加に伴い内容を更新ベンダ情報：ヒューレット・パッカード (HPSBST02955 SSRT101157) を追加ベンダ情報：ヒューレット・パッカード (HPSBUX02401 SSRT090005) を追加ベンダ情報：アップル（APPLE-SA-2008-10-09 Security Update 2008-007）を追加ベンダ情報：VMware（VMSA-2009-0002）を追加ベンダ情報：アバイア（ASA-2008-401）を追加	Feb. 17, 2018, 10:37 a.m.

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:apache:tomcat:5.5.18:::::::*
cpe:2.3:a:apache:tomcat:6.0.6:::::::*
cpe:2.3:a:apache:tomcat:6.0.11:::::::*
cpe:2.3:a:apache:tomcat:5.5.12:::::::*
cpe:2.3:a:apache:tomcat:5.5.14:::::::*
cpe:2.3:a:apache:tomcat:5.5.10:::::::*
cpe:2.3:a:apache:tomcat:6.0.7:::::::*
cpe:2.3:a:apache:tomcat:5.5.11:::::::*
cpe:2.3:a:apache:tomcat:6.0.4:::::::*
cpe:2.3:a:apache:tomcat:5.5.26:::::::*
cpe:2.3:a:apache:tomcat:5.5.20:::::::*
cpe:2.3:a:apache:tomcat:5.5.15:::::::*
cpe:2.3:a:apache:tomcat:6.0.15:::::::*
cpe:2.3:a:apache:tomcat:5.5.21:::::::*
cpe:2.3:a:apache:tomcat:5.5.22:::::::*
cpe:2.3:a:apache:tomcat:6.0.10:::::::*
cpe:2.3:a:apache:tomcat:6.0.3:::::::*
cpe:2.3:a:apache:tomcat:6.0.9:::::::*
cpe:2.3:a:apache:tomcat:5.5.9:::::::*
cpe:2.3:a:apache:tomcat:5.5.25:::::::*
cpe:2.3:a:apache:tomcat:6.0.0:::::::*
cpe:2.3:a:apache:tomcat:6.0.14:::::::*
cpe:2.3:a:apache:tomcat:5.5.13:::::::*
cpe:2.3:a:apache:tomcat:6.0.1:::::::*
cpe:2.3:a:apache:tomcat:6.0.12:::::::*
cpe:2.3:a:apache:tomcat:5.5.24:::::::*
cpe:2.3:a:apache:tomcat:5.5.16:::::::*
cpe:2.3:a:apache:tomcat:6.0.5:::::::*
cpe:2.3:a:apache:tomcat:5.5.17:::::::*
cpe:2.3:a:apache:tomcat:5.5.19:::::::*
cpe:2.3:a:apache:tomcat:6.0.2:::::::*
cpe:2.3:a:apache:tomcat:6.0.13:::::::*
cpe:2.3:a:apache:tomcat:5.5.23:::::::*
cpe:2.3:a:apache:tomcat:6.0.16:::::::*
cpe:2.3:a:apache:tomcat:6.0.8:::::::*