製品・ソフトウェアに関する情報

JVN脆弱性詳細

Apache Tomcat におけるサービス運用妨害 (CPU 資源の消費) の脆弱性

Title	Apache Tomcat におけるサービス運用妨害 (CPU 資源の消費) の脆弱性
Summary	Apache Tomcat は、ハッシュ衝突を想定した制限を行わずにフォームパラメータのハッシュ値を算出するため、サービス運用妨害 (CPU 資源の消費) 状態となる脆弱性が存在します。
Possible impacts	第三者により、巧妙に細工されたパラメータを大量に送信されることで、サービス運用妨害 (CPU 資源の消費) 状態にされる可能性があります。
Solution	ベンダ情報および参考情報を参照して適切な対策を実施してください。
Publication Date	Jan. 5, 2012, midnight
Registration Date	Jan. 6, 2012, 10:06 a.m.
Last Update	March 8, 2013, 3:39 p.m.

CVSS2.0 : 警告
Score	5
Vector	AV:N/AC:L/Au:N/C:N/I:N/A:P

Affected System

Apache Software Foundation

Apache Tomcat 5.5.35 未満

Apache Tomcat 6.0.35 未満の 6.x

Apache Tomcat 7.0.23 未満の 7.x

IBM

IBM Cognos Business Intelligence 10.1 の IF2 未満

IBM Cognos Business Intelligence 10.1.1 の IF2 未満

IBM Cognos Business Intelligence 10.2 の IF1 未満

IBM Cognos Business Intelligence 8.4.1 の IF1 未満

日本電気

CSVIEW /FAQナビ V4 および V5

InfoCage PCセキュリティ V1.44 以前

InfoFrame DocumentSkipper V3.2

InfoFrame DocumentSkipper V4.1

InfoFrame DocumentSkipper V5.1

WebOTX Developer V7.1 から V8.1

WebOTX Enterprise Edition V4.1 から V6.5

WebOTX Enterprise Service Bus V6.4 から V8.4

WebOTX Portal V8.2 から V8.3

WebOTX SIP Application Server Standard Edition V7.1 から V8.1

WebOTX Standard Edition V4.1 から V6.5

WebOTX Standard-J Edition V4.1 から V6.5

WebOTX UDDI Registry V1.1 から V7.1

WebOTX Web Edition V4.1 から V6.5

WebOTX 開発環境 V6.1 から V6.5

WebOTX Application Server Enterprise Edition V7.1 から V8.1

WebOTX Application Server Enterprise V8.2 から V8.4

WebOTX Application Server Express V8.2 から V8.4

WebOTX Application Server Foundation V8.2 から V8.4

WebOTX Application Server Standard Edition V7.1 から V8.1

WebOTX Application Server Standard V8.2 から V8.4

WebOTX Application Server Standard-J Edition V7.1 から V8.1

WebOTX Application Server Web Edition V7.1 から V8.1

WebSAM SECUREMASTER EnterpriseAccessManager Ver5.0 から Ver6.1

WebSAM SECUREMASTER EnterpriseIdentityManager Ver4.1 までの全バージョン

サイボウズ

サイボウズガルーン 2.0.0 から 3.1

富士通

Internet Navigware Server

Interstage Application Development Cycle Manager

Interstage Application Framework Suite

Interstage Application Server

Interstage Application Server Plus Developer / Apworks / Studio

Interstage Business Application Server

Interstage Form Coordinator Workflow

Interstage Job Workload Server

Interstage List Manager

Interstage List Works

Interstage Service Integrator

Interstage Shunsaku Data Manager

Interstage Web Server

Interstage XML Business Activity Recorder

ServerView Resource Orchestrator Cloud Edition

SUCCESS SERVER

Systemwalker Availability View

Systemwalker Desktop Inspection

Systemwalker IT Change Manager

Systemwalker IT Process Master

Systemwalker Operation Manager

Systemwalker Runbook Automation

Systemwalker Service Catalog Manager

Systemwalker Service Quality Coordinator

Systemwalker Software Configuration Manager

日立

Cosminexus Application Server Enterprise Version 6

Cosminexus Application Server Standard Version 6

Cosminexus Application Server Version 5

Cosminexus Component Container

Cosminexus Developer Light Version 6

Cosminexus Developer Professional Version 6

Cosminexus Developer Standard Version 6

Cosminexus Developer Version 5

Cosminexus Primary Server Base

Cosminexus Studio Version 5

Hitachi IT Operations Analyzer

uCosminexus Application Server Enterprise

uCosminexus Application Server Express

uCosminexus Application Server Light

uCosminexus Application Server Smart Edition

uCosminexus Application Server Standard

uCosminexus Application Server Standard-R

uCosminexus Developer 01

uCosminexus Developer Light

uCosminexus Developer Professional

uCosminexus Developer Professional for Plug-in

uCosminexus Developer Standard

uCosminexus Primary Server Base

uCosminexus Service Architect

uCosminexus Service Platform

uCosminexus Service Platform - Messaging

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2011-4858	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4858
National Vulnerability Database (NVD)
2	CVE-2011-4858	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-4858

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-399	https://jvndb.jvn.jp/ja/cwe/CWE-399.html

ベンダー情報

No	Name	URL
Apache Software Foundation
1	Changelog	http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
Hitachi Software Vulnerability Information
2	HS12-003	http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS12-003/index.html
3	HS12-019	http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS12-019/index.html
IBM Support Document
4	1626697	http://www-01.ibm.com/support/docview.wss?uid=swg21626697
5	4034373	http://www-01.ibm.com/support/docview.wss?uid=swg24034373
NEC製品セキュリティ情報
6	NV12-003	http://www.nec.co.jp/security-info/secinfo/nv12-003.html
Red Hat Bugzilla
7	Bug 750521	https://bugzilla.redhat.com/show_bug.cgi?id=750521
SECURITY BLOG
8	Multiple Denial of Service (DoS) vulnerabilities in Apache Tomcat	https://blogs.oracle.com/sunsecurity/entry/multiple_denial_of_service_dos
9	Multiple vulnerabilities in Oracle Java Web Console - oracle_java	https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_oracle_java
10	Multiple vulnerabilities in Oracle Java Web Console - oracle_java1	https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_oracle_java1
サイボウズ
11	CY12-02-006	http://cs.cybozu.co.jp/information/20120224up08.php
サポート技術情報
12	interstage_as_201201	http://software.fujitsu.com/jp/security/products-fujitsu/solution/interstage_as_201201.html
ソフトウェア製品セキュリティ情報
13	HS12-003	http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS12-003/index.html
14	HS12-019	http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS12-019/index.html
技術情報
15	InfoCage PCセキュリティ - 重要なお知らせ	http://www.nec.co.jp/cced/infocage/info/pc_security_news120329.html
16	WebOTX Webコンテナのハッシュに関する脆弱性（CVE-2011-4858）について	https://www.support.nec.co.jp/View.aspx?id=3010100358
17	【iStorage Mシリーズ】WebSAM Storage VMware vCenter Plug-inV1.1が使用しているApache Tomcat脆弱性問題の対処について	http://www.support.nec.co.jp/View.aspx?id=3140100906

その他

No	Name	URL
IPA 緊急対策情報
1	20120106-web	http://www.ipa.go.jp/security/ciadr/vul/20120106-web.html
JVN
2	JVNVU#903934	http://jvn.jp/cert/JVNVU903934
US-CERT Vulnerability Note
3	VU#903934	http://www.kb.cert.org/vuls/id/903934

Change Log

No	Changed Details	Date of change
0	[2012年01月06日] 掲載 [2012年01月17日] 影響を受けるシステム：富士通 (interstage_as_201201) の情報を追加ベンダ情報：富士通 (interstage_as_201201) を追加 [2012年01月27日] 影響を受けるシステム：日立 (HS12-003) の情報を追加ベンダ情報：日立 (HS12-003) を追加 [2012年02月17日] 影響を受けるシステム：日本電気 (NV12-003) の情報を追加ベンダ情報：日本電気 (NV12-003) を追加 [2012年03月01日] 影響を受けるシステム：サイボウズ (CY12-02-006) の情報を追加ベンダ情報：サイボウズ (CY12-02-006) を追加 [2012年03月27日] 影響を受けるシステム：富士通 (interstage_as_201201) の情報を更新 [2012年03月30日] 影響を受けるシステム：日本電気 (NV12-003) の情報を追加 [2012年04月16日] ベンダ情報：オラクル (Multiple Denial of Service (DoS) vulnerabilities in Apache Tomcat) を追加 [2012年04月18日] 影響を受けるシステム：日本電気 (NV12-003) の情報を更新ベンダ情報：日本電気 (WebOTX Webコンテナのハッシュに関する脆弱性（CVE-2011-4858）について) を追加ベンダ情報：日本電気 (InfoCage PCセキュリティ - 重要なお知らせ) を追加 [2012年05月31日] 影響を受けるシステム：日本電気 (NV12-003) の情報を更新 [2012年07月10日] 影響を受けるシステム：日立 (HS12-019) の情報を更新ベンダ情報：日立 (HS12-019) を追加 [2012年09月28日] ベンダ情報：オラクル (Multiple vulnerabilities in Oracle Java Web Console - oracle_java) を追加ベンダ情報：オラクル (Multiple vulnerabilities in Oracle Java Web Console - oracle_java1) を追加 [2012年10月01日] 影響を受けるシステム：日本電気 (NV12-003) の情報を更新 [2013年02月04日] 影響を受けるシステム：日本電気 (NV12-003) の情報を更新ベンダ情報：日本電気 (【iStorage Mシリーズ】WebSAM Storage VMware vCenter Plug-inV1.1が使用しているApache Tomcat脆弱性問題の対処について) の情報を追加 [2013年03月08日] 影響を受けるシステム：IBM (1626697) の情報を追加ベンダ情報：IBM (4034373) を追加	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2011-4858

Summary	Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.
Publication Date	Jan. 6, 2012, 4:55 a.m.
Registration Date	Jan. 28, 2021, 4:39 p.m.
Last Update	Nov. 21, 2024, 10:33 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:apache:tomcat:6.0.33:::::::*
cpe:2.3:a:apache:tomcat:7.0.12:::::::*
cpe:2.3:a:apache:tomcat:6.0.6:::::::*
cpe:2.3:a:apache:tomcat:7.0.20:::::::*
cpe:2.3:a:apache:tomcat:6.0.11:::::::*
cpe:2.3:a:apache:tomcat:6.0.34:::::::*
cpe:2.3:a:apache:tomcat:7.0.8:::::::*
cpe:2.3:a:apache:tomcat:7.0.1:::::::*
cpe:2.3:a:apache:tomcat:7.0.2:::::::*
cpe:2.3:a:apache:tomcat:7.0.5:::::::*
cpe:2.3:a:apache:tomcat:6.0.22:::::::*
cpe:2.3:a:apache:tomcat:6.0.25:::::::*
cpe:2.3:a:apache:tomcat:6.0.7:::::::*
cpe:2.3:a:apache:tomcat:6.0.4:::::::*
cpe:2.3:a:apache:tomcat:7.0.22:::::::*
cpe:2.3:a:apache:tomcat:5.5.35:::::::*
cpe:2.3:a:apache:tomcat:6.0.15:::::::*
cpe:2.3:a:apache:tomcat:7.0.0:::::::*
cpe:2.3:a:apache:tomcat:7.0.6:::::::*
cpe:2.3:a:apache:tomcat:7.0.18:::::::*
cpe:2.3:a:apache:tomcat:6.0.20:::::::*
cpe:2.3:a:apache:tomcat:7.0.14:::::::*
cpe:2.3:a:apache:tomcat:6.0.21:::::::*
cpe:2.3:a:apache:tomcat:6.0.10:::::::*
cpe:2.3:a:apache:tomcat:6.0.31:::::::*
cpe:2.3:a:apache:tomcat:6.0.29:::::::*
cpe:2.3:a:apache:tomcat:7.0.11:::::::*
cpe:2.3:a:apache:tomcat:6.0.3:::::::*
cpe:2.3:a:apache:tomcat:6.0.9:::::::*
cpe:2.3:a:apache:tomcat:6.0.24:::::::*
cpe:2.3:a:apache:tomcat:6.0.23:::::::*
cpe:2.3:a:apache:tomcat:6.0.17:::::::*
cpe:2.3:a:apache:tomcat:7.0.7:::::::*
cpe:2.3:a:apache:tomcat:6.0.32:::::::*
cpe:2.3:a:apache:tomcat:6.0.28:::::::*
cpe:2.3:a:apache:tomcat:6.0.0:::::::*
cpe:2.3:a:apache:tomcat:7.0.13:::::::*
cpe:2.3:a:apache:tomcat:6.0.14:::::::*
cpe:2.3:a:apache:tomcat:7.0.15:::::::*
cpe:2.3:a:apache:tomcat:7.0.19:::::::*
cpe:2.3:a:apache:tomcat:7.0.16:::::::*
cpe:2.3:a:apache:tomcat:7.0.10:::::::*
cpe:2.3:a:apache:tomcat:6.0.1:::::::*
cpe:2.3:a:apache:tomcat:6.0.12:::::::*
cpe:2.3:a:apache:tomcat:6.0.18:::::::*
cpe:2.3:a:apache:tomcat:6.0.5:::::::*
cpe:2.3:a:apache:tomcat:7.0.21:::::::*
cpe:2.3:a:apache:tomcat:7.0.17:::::::*
cpe:2.3:a:apache:tomcat:6.0.30:::::::*
cpe:2.3:a:apache:tomcat:6.0.2:::::::*
cpe:2.3:a:apache:tomcat:7.0.9:::::::*
cpe:2.3:a:apache:tomcat:6.0.13:::::::*
cpe:2.3:a:apache:tomcat:7.0.4:::::::*
cpe:2.3:a:apache:tomcat:7.0.3:::::::*
cpe:2.3:a:apache:tomcat:6.0.26:::::::*
cpe:2.3:a:apache:tomcat:6.0.19:::::::*
cpe:2.3:a:apache:tomcat:6.0.27:::::::*
cpe:2.3:a:apache:tomcat:6.0.16:::::::*
cpe:2.3:a:apache:tomcat:6.0.8:::::::*

Related information, measures and tools

No	URL	タグ
1	http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106%40apache.org%3e
2	http://marc.info/?l=bugtraq&m=132871655717248&w=2
3	http://marc.info/?l=bugtraq&m=132871655717248&w=2
4	http://marc.info/?l=bugtraq&m=133294394108746&w=2
5	http://marc.info/?l=bugtraq&m=133294394108746&w=2
6	http://marc.info/?l=bugtraq&m=136485229118404&w=2
7	http://marc.info/?l=bugtraq&m=136485229118404&w=2
8	http://rhn.redhat.com/errata/RHSA-2012-0074.html
9	http://rhn.redhat.com/errata/RHSA-2012-0075.html
10	http://rhn.redhat.com/errata/RHSA-2012-0076.html
11	http://rhn.redhat.com/errata/RHSA-2012-0077.html
12	http://rhn.redhat.com/errata/RHSA-2012-0078.html
13	http://rhn.redhat.com/errata/RHSA-2012-0089.html
14	http://rhn.redhat.com/errata/RHSA-2012-0325.html
15	http://rhn.redhat.com/errata/RHSA-2012-0406.html
16	http://secunia.com/advisories/48549
17	http://secunia.com/advisories/48790
18	http://secunia.com/advisories/48791
19	http://secunia.com/advisories/54971
20	http://secunia.com/advisories/55115
21	http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
22	http://www.debian.org/security/2012/dsa-2401
23	http://www.kb.cert.org/vuls/id/903934	US Government Resource
24	http://www.nruns.com/_downloads/advisory28122011.pdf
25	http://www.ocert.org/advisories/ocert-2011-003.html
26	http://www.securityfocus.com/bid/51200
27	https://bugzilla.redhat.com/show_bug.cgi?id=750521
28	https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py
29	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18886
30	http://mail-archives.apache.org/mod_mbox/tomcat-announce/201112.mbox/%3c4EFB9800.5010106%40apache.org%3e
31	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18886
32	https://github.com/FireFart/HashCollision-DOS-POC/blob/master/HashtablePOC.py
33	https://bugzilla.redhat.com/show_bug.cgi?id=750521
34	http://www.securityfocus.com/bid/51200
35	http://www.ocert.org/advisories/ocert-2011-003.html
36	http://www.nruns.com/_downloads/advisory28122011.pdf
37	http://www.kb.cert.org/vuls/id/903934	US Government Resource
38	http://www.debian.org/security/2012/dsa-2401
39	http://tomcat.apache.org/tomcat-7.0-doc/changelog.html
40	http://secunia.com/advisories/55115
41	http://secunia.com/advisories/54971
42	http://secunia.com/advisories/48791
43	http://secunia.com/advisories/48790
44	http://secunia.com/advisories/48549
45	http://rhn.redhat.com/errata/RHSA-2012-0406.html
46	http://rhn.redhat.com/errata/RHSA-2012-0325.html
47	http://rhn.redhat.com/errata/RHSA-2012-0089.html
48	http://rhn.redhat.com/errata/RHSA-2012-0078.html
49	http://rhn.redhat.com/errata/RHSA-2012-0077.html
50	http://rhn.redhat.com/errata/RHSA-2012-0076.html
51	http://rhn.redhat.com/errata/RHSA-2012-0075.html
52	http://rhn.redhat.com/errata/RHSA-2012-0074.html
53	http://marc.info/?l=bugtraq&m=136485229118404&w=2
54	http://marc.info/?l=bugtraq&m=136485229118404&w=2
55	http://marc.info/?l=bugtraq&m=133294394108746&w=2
56	http://marc.info/?l=bugtraq&m=133294394108746&w=2
57	http://marc.info/?l=bugtraq&m=132871655717248&w=2
58	http://marc.info/?l=bugtraq&m=132871655717248&w=2

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-399	リソース管理の問題	https://cwe.mitre.org/data/definitions/399.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:apache:tomcat:6.0.33:::::::*
cpe:2.3:a:apache:tomcat:7.0.12:::::::*
cpe:2.3:a:apache:tomcat:6.0.6:::::::*
cpe:2.3:a:apache:tomcat:7.0.20:::::::*
cpe:2.3:a:apache:tomcat:6.0.11:::::::*
cpe:2.3:a:apache:tomcat:6.0.34:::::::*
cpe:2.3:a:apache:tomcat:7.0.8:::::::*
cpe:2.3:a:apache:tomcat:7.0.1:::::::*
cpe:2.3:a:apache:tomcat:7.0.2:::::::*
cpe:2.3:a:apache:tomcat:7.0.5:::::::*
cpe:2.3:a:apache:tomcat:6.0.22:::::::*
cpe:2.3:a:apache:tomcat:6.0.25:::::::*
cpe:2.3:a:apache:tomcat:6.0.7:::::::*
cpe:2.3:a:apache:tomcat:6.0.4:::::::*
cpe:2.3:a:apache:tomcat:7.0.22:::::::*
cpe:2.3:a:apache:tomcat:5.5.35:::::::*
cpe:2.3:a:apache:tomcat:6.0.15:::::::*
cpe:2.3:a:apache:tomcat:7.0.0:::::::*
cpe:2.3:a:apache:tomcat:7.0.6:::::::*
cpe:2.3:a:apache:tomcat:7.0.18:::::::*
cpe:2.3:a:apache:tomcat:6.0.20:::::::*
cpe:2.3:a:apache:tomcat:7.0.14:::::::*
cpe:2.3:a:apache:tomcat:6.0.21:::::::*
cpe:2.3:a:apache:tomcat:6.0.10:::::::*
cpe:2.3:a:apache:tomcat:6.0.31:::::::*
cpe:2.3:a:apache:tomcat:6.0.29:::::::*
cpe:2.3:a:apache:tomcat:7.0.11:::::::*
cpe:2.3:a:apache:tomcat:6.0.3:::::::*
cpe:2.3:a:apache:tomcat:6.0.9:::::::*
cpe:2.3:a:apache:tomcat:6.0.24:::::::*
cpe:2.3:a:apache:tomcat:6.0.23:::::::*
cpe:2.3:a:apache:tomcat:6.0.17:::::::*
cpe:2.3:a:apache:tomcat:7.0.7:::::::*
cpe:2.3:a:apache:tomcat:6.0.32:::::::*
cpe:2.3:a:apache:tomcat:6.0.28:::::::*
cpe:2.3:a:apache:tomcat:6.0.0:::::::*
cpe:2.3:a:apache:tomcat:7.0.13:::::::*
cpe:2.3:a:apache:tomcat:6.0.14:::::::*
cpe:2.3:a:apache:tomcat:7.0.15:::::::*
cpe:2.3:a:apache:tomcat:7.0.19:::::::*
cpe:2.3:a:apache:tomcat:7.0.16:::::::*
cpe:2.3:a:apache:tomcat:7.0.10:::::::*
cpe:2.3:a:apache:tomcat:6.0.1:::::::*
cpe:2.3:a:apache:tomcat:6.0.12:::::::*
cpe:2.3:a:apache:tomcat:6.0.18:::::::*
cpe:2.3:a:apache:tomcat:6.0.5:::::::*
cpe:2.3:a:apache:tomcat:7.0.21:::::::*
cpe:2.3:a:apache:tomcat:7.0.17:::::::*
cpe:2.3:a:apache:tomcat:6.0.30:::::::*
cpe:2.3:a:apache:tomcat:6.0.2:::::::*
cpe:2.3:a:apache:tomcat:7.0.9:::::::*
cpe:2.3:a:apache:tomcat:6.0.13:::::::*
cpe:2.3:a:apache:tomcat:7.0.4:::::::*
cpe:2.3:a:apache:tomcat:7.0.3:::::::*
cpe:2.3:a:apache:tomcat:6.0.26:::::::*
cpe:2.3:a:apache:tomcat:6.0.19:::::::*
cpe:2.3:a:apache:tomcat:6.0.27:::::::*
cpe:2.3:a:apache:tomcat:6.0.16:::::::*
cpe:2.3:a:apache:tomcat:6.0.8:::::::*