SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Web Server/CGI)  >   Apache Tomcat Vendors:   Apache Software Foundation
Apache Tomcat Native OCSP Response Handling Flaws Let Remote Users Bypass Authentication on the Target System
SecurityTracker Alert ID:  1041507
SecurityTracker URL:  http://securitytracker.com/id/1041507
CVE Reference:   CVE-2018-8019, CVE-2018-8020   (Links to External Site)
Date:  Aug 16 2018
Impact:   Host/resource access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  

Description:   Two vulnerabilities were reported in Apache Tomcat Native. A remote user can bypass authentication in certain cases.

The library does not properly handle Online Certificate Status Protocol (OCSP) responses.

A remote user with a revoked client certificate and using mutual TLS may be able to authenticate using the revoked certificate [CVE-2018-8019].

A remote user with a revoked client certificate and using mutual TLS may be able to authenticate using the revoked certificate on systems that use pre-produced responses from an OCSP responder [CVE-2018-8020].

Coty Sutherland (Red Hat) reported these vulnerabilities.

Impact:   A remote user can bypass authentication on the target system.
Solution:   The vendor has issued a fix (Tomcat Native 1.2.17).

The vendor advisory is available at:

http://tomcat.apache.org/native-doc/miscellaneous/changelog.html

Vendor URL:  tomcat.apache.org/native-doc/miscellaneous/changelog.html (Links to External Site)
Cause:   Authentication error
Underlying OS:  Linux (Any), UNIX (Any), Windows (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Aug 16 2018 (Red Hat Issues Fix for Red Hat JBoss Web Server) Apache Tomcat Native OCSP Response Handling Flaws Let Remote Users Bypass Authentication on the Target System
Red Hat has issued a fix for Red Hat JBoss Web Server for Red Hat Enterprise Linux 6 and 7.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC