CVE-2011-4858

MyBulletinBoard (MyBB) 1.1.5 - 'CLIENT-IP' SQL Injection

Severity Score

5.0

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.

Apache Tomcat antes de v5.5.35, v6.x antes de v6.0.35 y v7.x antes de v7.0.23 calcula los valores hash de los parámetros de los formularios, sin restringir la capacidad de desencadenar colisiones de hash de forma predecible. Esto permite a atacantes remotos provocar una denegación de servicio (por consumo de CPU) mediante el envío de gran cantidad de parámetros especialmente modificados.

*Credits: N/A

CVSS Scores

NISTv2 5.0

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2006-07-15 First Exploit
2011-12-16 CVE Reserved
2012-01-05 CVE Published
2024-01-24 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-399: Resource Management Errors

CAPEC

References (33)

URL	Tag	Source
http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106%40apache.org%3e	Mailing List
http://secunia.com/advisories/48549	Third Party Advisory
http://secunia.com/advisories/48790	Third Party Advisory
http://secunia.com/advisories/48791	Third Party Advisory
http://secunia.com/advisories/54971	Third Party Advisory
http://secunia.com/advisories/55115	Third Party Advisory
http://tomcat.apache.org/tomcat-7.0-doc/changelog.html	X_refsource_confirm
http://www.kb.cert.org/vuls/id/903934	Third Party Advisory
http://www.nruns.com/_downloads/advisory28122011.pdf	X_refsource_misc
http://www.ocert.org/advisories/ocert-2011-003.html	X_refsource_misc
http://www.securityfocus.com/bid/51200	Vdb Entry
https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py	X_refsource_misc
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18886	Signature
http://ocert.org/advisories/ocert-2011-003.html
https://web.archive.org/web/20120105151644/http://www.nruns.com/_downloads/advisory28122011.pdf
https://fahrplan.events.ccc.de/congress/2011/Fahrplan/events/4680.en.html
https://fahrplan.events.ccc.de/congress/2011/Fahrplan/attachments/2007_28C3_Effective_DoS_on_web_application_platforms.pdf
https://www.youtube.com/watch?v=R2Cq3CLI6H8

URL	Date	SRC
https://www.exploit-db.com/exploits/2012	2006-07-15

URL	Date	SRC

URL	Date	SRC
http://marc.info/?l=bugtraq&m=132871655717248&w=2	2023-11-07
http://marc.info/?l=bugtraq&m=133294394108746&w=2	2023-11-07
http://marc.info/?l=bugtraq&m=136485229118404&w=2	2023-11-07
http://rhn.redhat.com/errata/RHSA-2012-0074.html	2023-11-07
http://rhn.redhat.com/errata/RHSA-2012-0075.html	2023-11-07
http://rhn.redhat.com/errata/RHSA-2012-0076.html	2023-11-07
http://rhn.redhat.com/errata/RHSA-2012-0077.html	2023-11-07
http://rhn.redhat.com/errata/RHSA-2012-0078.html	2023-11-07
http://rhn.redhat.com/errata/RHSA-2012-0089.html	2023-11-07
http://rhn.redhat.com/errata/RHSA-2012-0325.html	2023-11-07
http://rhn.redhat.com/errata/RHSA-2012-0406.html	2023-11-07
http://www.debian.org/security/2012/dsa-2401	2023-11-07
https://bugzilla.redhat.com/show_bug.cgi?id=750521	2012-05-21
https://access.redhat.com/security/cve/CVE-2011-4858	2012-05-21

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				5.5.35 Search vendor "Apache" for product "Tomcat" and version "5.5.35"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.0 Search vendor "Apache" for product "Tomcat" and version "6.0.0"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.1 Search vendor "Apache" for product "Tomcat" and version "6.0.1"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.2 Search vendor "Apache" for product "Tomcat" and version "6.0.2"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.3 Search vendor "Apache" for product "Tomcat" and version "6.0.3"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.4 Search vendor "Apache" for product "Tomcat" and version "6.0.4"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.5 Search vendor "Apache" for product "Tomcat" and version "6.0.5"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.6 Search vendor "Apache" for product "Tomcat" and version "6.0.6"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.7 Search vendor "Apache" for product "Tomcat" and version "6.0.7"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.8 Search vendor "Apache" for product "Tomcat" and version "6.0.8"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.9 Search vendor "Apache" for product "Tomcat" and version "6.0.9"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.10 Search vendor "Apache" for product "Tomcat" and version "6.0.10"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.11 Search vendor "Apache" for product "Tomcat" and version "6.0.11"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.12 Search vendor "Apache" for product "Tomcat" and version "6.0.12"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.13 Search vendor "Apache" for product "Tomcat" and version "6.0.13"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.14 Search vendor "Apache" for product "Tomcat" and version "6.0.14"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.15 Search vendor "Apache" for product "Tomcat" and version "6.0.15"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.16 Search vendor "Apache" for product "Tomcat" and version "6.0.16"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.17 Search vendor "Apache" for product "Tomcat" and version "6.0.17"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.18 Search vendor "Apache" for product "Tomcat" and version "6.0.18"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.19 Search vendor "Apache" for product "Tomcat" and version "6.0.19"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.20 Search vendor "Apache" for product "Tomcat" and version "6.0.20"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.21 Search vendor "Apache" for product "Tomcat" and version "6.0.21"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.22 Search vendor "Apache" for product "Tomcat" and version "6.0.22"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.23 Search vendor "Apache" for product "Tomcat" and version "6.0.23"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.24 Search vendor "Apache" for product "Tomcat" and version "6.0.24"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.25 Search vendor "Apache" for product "Tomcat" and version "6.0.25"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.26 Search vendor "Apache" for product "Tomcat" and version "6.0.26"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.27 Search vendor "Apache" for product "Tomcat" and version "6.0.27"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.28 Search vendor "Apache" for product "Tomcat" and version "6.0.28"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.29 Search vendor "Apache" for product "Tomcat" and version "6.0.29"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.30 Search vendor "Apache" for product "Tomcat" and version "6.0.30"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.31 Search vendor "Apache" for product "Tomcat" and version "6.0.31"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.32 Search vendor "Apache" for product "Tomcat" and version "6.0.32"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.33 Search vendor "Apache" for product "Tomcat" and version "6.0.33"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				6.0.34 Search vendor "Apache" for product "Tomcat" and version "6.0.34"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.0 Search vendor "Apache" for product "Tomcat" and version "7.0.0"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.1 Search vendor "Apache" for product "Tomcat" and version "7.0.1"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.2 Search vendor "Apache" for product "Tomcat" and version "7.0.2"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.3 Search vendor "Apache" for product "Tomcat" and version "7.0.3"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.4 Search vendor "Apache" for product "Tomcat" and version "7.0.4"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.5 Search vendor "Apache" for product "Tomcat" and version "7.0.5"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.6 Search vendor "Apache" for product "Tomcat" and version "7.0.6"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.7 Search vendor "Apache" for product "Tomcat" and version "7.0.7"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.8 Search vendor "Apache" for product "Tomcat" and version "7.0.8"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.9 Search vendor "Apache" for product "Tomcat" and version "7.0.9"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.10 Search vendor "Apache" for product "Tomcat" and version "7.0.10"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.11 Search vendor "Apache" for product "Tomcat" and version "7.0.11"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.12 Search vendor "Apache" for product "Tomcat" and version "7.0.12"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.13 Search vendor "Apache" for product "Tomcat" and version "7.0.13"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.14 Search vendor "Apache" for product "Tomcat" and version "7.0.14"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.15 Search vendor "Apache" for product "Tomcat" and version "7.0.15"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.16 Search vendor "Apache" for product "Tomcat" and version "7.0.16"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.17 Search vendor "Apache" for product "Tomcat" and version "7.0.17"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.18 Search vendor "Apache" for product "Tomcat" and version "7.0.18"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.19 Search vendor "Apache" for product "Tomcat" and version "7.0.19"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.20 Search vendor "Apache" for product "Tomcat" and version "7.0.20"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.21 Search vendor "Apache" for product "Tomcat" and version "7.0.21"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.22 Search vendor "Apache" for product "Tomcat" and version "7.0.22"		-		Affected