Overview
The example SendMailServlet page that comes with Apache Tomcat is vulnerable to cross-site scripting via the "From" field.
Description
Apache Tomcat is an implementation of the Java Servlet and JavaServer Page (JSP) technologies. Apache Tomcat includes a sample page called SendMailServlet, which is provided by sendmail.jsp. This page fails to properly validate input to the "From" field, which creates a cross-site scripting vulnerability. According to the vendor, the following versions of Apache Tomcat are affected 4.0.0 to 4.0.6 4.1.0 to 4.1.36 |
Impact
A remote attacker may be able to execute arbitrary script within the security context of the web site running Apache Tomcat. More information about cross-site scripting is available in CERT Advisory CA-2000-02. |
Solution
Remove the examples web application |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
Thanks to Tomasz Kuczynski for reporting this vulnerability.
This document was written by Will Dormann.
Other Information
| CVE IDs: | CVE-2007-3383 |
| Severity Metric: | 3.83 |
| Date Public: | 2007-07-21 |
| Date First Published: | 2007-07-22 |
| Date Last Updated: | 2007-07-22 15:46 UTC |
| Document Revision: | 7 |