Vulnerability Description
Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6.0.18, when FORM authentication is used, allows remote attackers to enumerate valid usernames via requests to /j_security_check with malformed URL encoding of passwords, related to improper error checking in the (1) MemoryRealm, (2) DataSourceRealm, and (3) JDBCRealm authentication realms, as demonstrated by a % (percent) value for the j_password parameter.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apache | Tomcat | 4.1.0 |
Related Weaknesses (CWE)
References
- http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
- http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html
- http://marc.info/?l=bugtraq&m=127420533226623&w=2
- http://marc.info/?l=bugtraq&m=129070310906557&w=2
- http://marc.info/?l=bugtraq&m=133469267822771&w=2
- http://marc.info/?l=bugtraq&m=136485229118404&w=2
- http://secunia.com/advisories/35326Vendor Advisory
- http://secunia.com/advisories/35344Vendor Advisory
- http://secunia.com/advisories/35685
- http://secunia.com/advisories/35788
- http://secunia.com/advisories/37460
- http://secunia.com/advisories/42368
- http://securitytracker.com/id?1022332
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-263529-1
- http://support.apple.com/kb/HT4077
FAQ
What is CVE-2009-0580?
CVE-2009-0580 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6.0.18, when FORM authentication is used, allows remote attackers to enumerate valid usernames via requests to /j_security_c...
How severe is CVE-2009-0580?
CVE-2009-0580 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-0580?
Check the references section above for vendor advisories and patch information. Affected products include: Apache Tomcat.