CVE-2008-5519

Description

The JK Connector (aka mod_jk) 1.2.0 through 1.2.26 in Apache Tomcat allows remote attackers to obtain sensitive information via an arbitrary request from an HTTP client, in opportunistic circumstances involving (1) a request from a different client that included a Content-Length header but no POST data or (2) a rapid series of requests, related to noncompliance with the AJP protocol's requirements for requests containing Content-Length headers.

Affected products

• apache / mod_jk1.2 – 1.2
• apache / mod_jk1.2.1 – 1.2.1
• apache / mod_jk1.2.6 – 1.2.6
• apache / mod_jk1.2.7 – 1.2.7
• apache / mod_jk1.2.8 – 1.2.8
• apache / mod_jk1.2.9 – 1.2.9
• apache / mod_jk1.2.10 – 1.2.10
• apache / mod_jk1.2.11 – 1.2.11
• apache / mod_jk1.2.12 – 1.2.12
• apache / mod_jk1.2.13 – 1.2.13
• apache / mod_jk1.2.14 – 1.2.14
• apache / mod_jk1.2.14.1 – 1.2.14.1
• apache / mod_jk1.2.15 – 1.2.15
• apache / mod_jk1.2.16 – 1.2.16
• apache / mod_jk1.2.17 – 1.2.17
• apache / mod_jk1.2.18 – 1.2.18
• apache / mod_jk1.2.19 – 1.2.19
• apache / mod_jk1.2.20 – 1.2.20
• apache / mod_jk1.2.21 – 1.2.21
• apache / mod_jk1.2.22 – 1.2.22
• apache / mod_jk1.2.23 – 1.2.23
• apache / mod_jk1.2.24 – 1.2.24
• apache / mod_jk1.2.25 – 1.2.25
• apache / mod_jk1.2.26 – 1.2.26
• apache / Tomcat4.0.0 – 4.0.0
• apache / Tomcat4.0.1 – 4.0.1
• apache / Tomcat4.0.2 – 4.0.2
• apache / Tomcat4.0.3 – 4.0.3
• apache / Tomcat4.0.4 – 4.0.4
• apache / Tomcat4.0.5 – 4.0.5
• apache / Tomcat4.0.6 – 4.0.6
• apache / Tomcat4.1.0 – 4.1.0
• apache / Tomcat4.1.1 – 4.1.1
• apache / Tomcat4.1.2 – 4.1.2
• apache / Tomcat4.1.3 – 4.1.3
• apache / Tomcat4.1.3 – 4.1.3
• apache / Tomcat4.1.4 – 4.1.4
• apache / Tomcat4.1.5 – 4.1.5
• apache / Tomcat4.1.6 – 4.1.6
• apache / Tomcat4.1.7 – 4.1.7
• apache / Tomcat4.1.8 – 4.1.8
• apache / Tomcat4.1.9 – 4.1.9
• apache / Tomcat4.1.9 – 4.1.9
• apache / Tomcat4.1.10 – 4.1.10
• apache / Tomcat4.1.11 – 4.1.11
• apache / Tomcat4.1.12 – 4.1.12
• apache / Tomcat4.1.13 – 4.1.13
• apache / Tomcat4.1.14 – 4.1.14
• apache / Tomcat4.1.15 – 4.1.15
• apache / Tomcat4.1.16 – 4.1.16
• apache / Tomcat4.1.17 – 4.1.17
• apache / Tomcat4.1.18 – 4.1.18
• apache / Tomcat4.1.19 – 4.1.19
• apache / Tomcat4.1.20 – 4.1.20
• apache / Tomcat4.1.21 – 4.1.21
• apache / Tomcat4.1.22 – 4.1.22
• apache / Tomcat4.1.23 – 4.1.23
• apache / Tomcat4.1.24 – 4.1.24
• apache / Tomcat4.1.25 – 4.1.25
• apache / Tomcat4.1.26 – 4.1.26
• apache / Tomcat4.1.27 – 4.1.27
• apache / Tomcat4.1.28 – 4.1.28
• apache / Tomcat4.1.29 – 4.1.29
• apache / Tomcat4.1.30 – 4.1.30
• apache / Tomcat4.1.31 – 4.1.31
• apache / Tomcat4.1.32 – 4.1.32
• apache / Tomcat4.1.33 – 4.1.33
• apache / Tomcat4.1.34 – 4.1.34
• apache / Tomcat4.1.35 – 4.1.35
• apache / Tomcat4.1.36 – 4.1.36
• apache / Tomcat5.0.0 – 5.0.0
• apache / Tomcat5.0.1 – 5.0.1
• apache / Tomcat5.0.2 – 5.0.2
• apache / Tomcat5.0.3 – 5.0.3
• apache / Tomcat5.0.4 – 5.0.4
• apache / Tomcat5.0.5 – 5.0.5
• apache / Tomcat5.0.6 – 5.0.6
• apache / Tomcat5.0.7 – 5.0.7
• apache / Tomcat5.0.8 – 5.0.8
• apache / Tomcat5.0.9 – 5.0.9
• apache / Tomcat5.0.10 – 5.0.10
• apache / Tomcat5.0.11 – 5.0.11
• apache / Tomcat5.0.12 – 5.0.12
• apache / Tomcat5.0.13 – 5.0.13
• apache / Tomcat5.0.14 – 5.0.14
• apache / Tomcat5.0.15 – 5.0.15
• apache / Tomcat5.0.16 – 5.0.16
• apache / Tomcat5.0.17 – 5.0.17
• apache / Tomcat5.0.18 – 5.0.18
• apache / Tomcat5.0.19 – 5.0.19
• apache / Tomcat5.0.21 – 5.0.21
• apache / Tomcat5.0.22 – 5.0.22
• apache / Tomcat5.0.23 – 5.0.23
• apache / Tomcat5.0.24 – 5.0.24
• apache / Tomcat5.0.25 – 5.0.25
• apache / Tomcat5.0.26 – 5.0.26
• apache / Tomcat5.0.27 – 5.0.27
• apache / Tomcat5.0.28 – 5.0.28
• apache / Tomcat5.0.29 – 5.0.29
• apache / Tomcat5.0.30 – 5.0.30
• apache / Tomcat5.5.0 – 5.5.0
• apache / Tomcat5.5.1 – 5.5.1
• apache / Tomcat5.5.2 – 5.5.2
• apache / Tomcat5.5.3 – 5.5.3
• apache / Tomcat5.5.4 – 5.5.4
• apache / Tomcat5.5.5 – 5.5.5
• apache / Tomcat5.5.6 – 5.5.6
• apache / Tomcat5.5.7 – 5.5.7
• apache / Tomcat5.5.8 – 5.5.8
• apache / Tomcat5.5.9 – 5.5.9
• apache / Tomcat5.5.10 – 5.5.10
• apache / Tomcat5.5.11 – 5.5.11
• apache / Tomcat5.5.12 – 5.5.12
• apache / Tomcat5.5.13 – 5.5.13
• apache / Tomcat5.5.14 – 5.5.14
• apache / Tomcat5.5.15 – 5.5.15
• apache / Tomcat5.5.16 – 5.5.16
• apache / Tomcat5.5.17 – 5.5.17
• apache / Tomcat5.5.18 – 5.5.18
• apache / Tomcat5.5.19 – 5.5.19
• apache / Tomcat5.5.20 – 5.5.20
• apache / Tomcat5.5.21 – 5.5.21
• apache / Tomcat5.5.22 – 5.5.22
• apache / Tomcat5.5.23 – 5.5.23
• apache / Tomcat5.5.24 – 5.5.24
• apache / Tomcat5.5.25 – 5.5.25
• apache / Tomcat5.5.26 – 5.5.26
• apache / Tomcat5.5.27 – 5.5.27

References

• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/0973
• MISChttp://tomcat.apache.org/connectors-doc/miscellaneous/changelog.html
• VENDOR_ADVISORYhttp://secunia.com/advisories/34621
• MAILING_LISThttp://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html
• MISChttp://securitytracker.com/id?1022001
• MISChttp://www.securityfocus.com/bid/34412
• MAILING_LISThttp://www.openwall.com/lists/oss-security/2009/04/08/10
• MISChttp://svn.eu.apache.org/viewvc/tomcat/connectors/trunk/jk/native/common/jk_ajp_common.c?r1=702387&r2=702540&pathrev=702540&diff_format=h
• MISChttp://www.redhat.com/support/errata/RHSA-2009-0446.html
• MISChttp://mail-archives.apache.org/mod_mbox/www-announce/200904.mbox/%3C49DBBAC0.2080400%40apache.org%3E
• MISChttp://svn.eu.apache.org/viewvc?view=rev&revision=702540
• MAILING_LISThttp://marc.info/?l=tomcat-dev&m=123913700700879
• MISChttp://www.securityfocus.com/archive/1/502530/100/0/threaded
• MISChttps://bugzilla.redhat.com/show_bug.cgi?id=490201
• VENDOR_ADVISORYhttp://secunia.com/advisories/29283
• MISChttp://tomcat.apache.org/security-jk.html
• VENDOR_ADVISORYhttp://secunia.com/advisories/35537
• VENDOR_ADVISORYhttp://www.debian.org/security/2009/dsa-1810
• MISChttp://sunsolve.sun.com/search/document.do?assetkey=1-26-262468-1
• MISChttp://svn.eu.apache.org/viewvc/tomcat/connectors/trunk/jk/xdocs/miscellaneous/changelog.xml?view=markup&pathrev=702540
• MAILING_LISThttps://lists.apache.org/thread.html/ba661b0edd913b39ff129a32d855620dd861883ade05fd88a8ce517d%40%3Cdev.tomcat.apache.org%3E
• MAILING_LISThttps://lists.apache.org/thread.html/8d2a579bbd977c225c70cb23b0ec54865fb0dab5da3eff1e060c9935%40%3Cdev.tomcat.apache.org%3E
• MAILING_LISThttps://lists.apache.org/thread.html/277d42b48b6e9aef50949c0dcc79ce21693091d73da246b3c1981925%40%3Cdev.tomcat.apache.org%3E
• MAILING_LISThttps://lists.apache.org/thread.html/5b7a23e245c93235c503900da854a143596d901bf1a1f67e851a5de4%40%3Cdev.tomcat.apache.org%3E
• MAILING_LISThttps://lists.apache.org/thread.html/rf8e8c091182b45daa50d3557cad9b10bb4198e3f08cf8f1c66a1b08d%40%3Cdev.tomcat.apache.org%3E
• MAILING_LISThttps://lists.apache.org/thread.html/r5c616dfc49156e4b06ffab842800c80f4425924d0f20c452c127a53c%40%3Cdev.tomcat.apache.org%3E