CVE-2013-2071

tomcat: Information disclosure in asynchronous context when using AsyncListeners that threw RuntimeExceptions

Severity Score

3.7

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

java/org/apache/catalina/core/AsyncContextImpl.java in Apache Tomcat 7.x before 7.0.40 does not properly handle the throwing of a RuntimeException in an AsyncListener in an application, which allows context-dependent attackers to obtain sensitive request information intended for other applications in opportunistic circumstances via an application that records the requests that it processes.

java/org/apache/catalina/core/AsyncContextImpl.java en Apache Tomcat v7.x anteriores a v7.0.40 no gestionan de forma adecuada el lanzamiento de RuntimeException en AsyncListener en application, lo que permite a atacantes dependiendo del contexto obtener una petición de información sensible solicitada en circunstancias adecuadas por otras aplicaciones que registran, las peticiones que se procesarán.

It was discovered that Tomcat incorrectly handled certain requests submitted using chunked transfer encoding. A remote attacker could use this flaw to cause the Tomcat server to stop responding, resulting in a denial of service. This issue only affected Ubuntu 10.04 LTS and Ubuntu 12.04 LTS. It was discovered that Tomcat incorrectly handled certain authentication requests. A remote attacker could possibly use this flaw to inject a request that would get executed with a victim's credentials. This issue only affected Ubuntu 10.04 LTS, Ubuntu 12.04 LTS, and Ubuntu 12.10. Various other issues were also addressed.

*Credits: N/A

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

Attack Vector

Network

Attack Complexity

High

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2013-02-19 CVE Reserved
2013-05-28 CVE Published
2024-08-06 CVE Updated
2024-08-06 First Exploit
2025-03-30 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

CAPEC

References (16)

URL	Tag	Source
http://archives.neohapsis.com/archives/bugtraq/2013-05/0040.html	Mailing List
http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html	X_refsource_confirm
http://www.securityfocus.com/bid/59798	Vdb Entry
http://www.securityfocus.com/bid/64758	Vdb Entry

URL	Date	SRC
https://issues.apache.org/bugzilla/show_bug.cgi?id=54178	2024-08-06

URL	Date	SRC
http://svn.apache.org/viewvc/tomcat/tc7.0.x/trunk/java/org/apache/catalina/core/AsyncContextImpl.java?r1=1471372&r2=1471371&pathrev=1471372	2017-05-23
http://svn.apache.org/viewvc?view=revision&revision=1471372	2017-05-23

URL	Date	SRC
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105855.html	2017-05-23
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/105886.html	2017-05-23
http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106342.html	2017-05-23
http://lists.opensuse.org/opensuse-updates/2013-08/msg00013.html	2017-05-23
http://marc.info/?l=bugtraq&m=139344248911289&w=2	2017-05-23
http://tomcat.apache.org/security-7.html	2017-05-23
http://www.ubuntu.com/usn/USN-1841-1	2017-05-23
https://access.redhat.com/security/cve/CVE-2013-2071	2013-07-03
https://bugzilla.redhat.com/show_bug.cgi?id=961803	2013-07-03

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.0 Search vendor "Apache" for product "Tomcat" and version "7.0.0"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.0 Search vendor "Apache" for product "Tomcat" and version "7.0.0"		beta		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.1 Search vendor "Apache" for product "Tomcat" and version "7.0.1"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.2 Search vendor "Apache" for product "Tomcat" and version "7.0.2"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.2 Search vendor "Apache" for product "Tomcat" and version "7.0.2"		beta		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.3 Search vendor "Apache" for product "Tomcat" and version "7.0.3"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.4 Search vendor "Apache" for product "Tomcat" and version "7.0.4"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.4 Search vendor "Apache" for product "Tomcat" and version "7.0.4"		beta		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.5 Search vendor "Apache" for product "Tomcat" and version "7.0.5"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.6 Search vendor "Apache" for product "Tomcat" and version "7.0.6"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.7 Search vendor "Apache" for product "Tomcat" and version "7.0.7"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.8 Search vendor "Apache" for product "Tomcat" and version "7.0.8"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.9 Search vendor "Apache" for product "Tomcat" and version "7.0.9"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.10 Search vendor "Apache" for product "Tomcat" and version "7.0.10"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.11 Search vendor "Apache" for product "Tomcat" and version "7.0.11"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.12 Search vendor "Apache" for product "Tomcat" and version "7.0.12"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.13 Search vendor "Apache" for product "Tomcat" and version "7.0.13"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.14 Search vendor "Apache" for product "Tomcat" and version "7.0.14"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.15 Search vendor "Apache" for product "Tomcat" and version "7.0.15"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.16 Search vendor "Apache" for product "Tomcat" and version "7.0.16"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.17 Search vendor "Apache" for product "Tomcat" and version "7.0.17"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.18 Search vendor "Apache" for product "Tomcat" and version "7.0.18"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.19 Search vendor "Apache" for product "Tomcat" and version "7.0.19"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.20 Search vendor "Apache" for product "Tomcat" and version "7.0.20"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.21 Search vendor "Apache" for product "Tomcat" and version "7.0.21"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.22 Search vendor "Apache" for product "Tomcat" and version "7.0.22"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.23 Search vendor "Apache" for product "Tomcat" and version "7.0.23"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.25 Search vendor "Apache" for product "Tomcat" and version "7.0.25"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.28 Search vendor "Apache" for product "Tomcat" and version "7.0.28"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.30 Search vendor "Apache" for product "Tomcat" and version "7.0.30"		-		Affected
Apache Search vendor "Apache"		Tomcat Search vendor "Apache" for product "Tomcat"				7.0.32 Search vendor "Apache" for product "Tomcat" and version "7.0.32"		-		Affected