Back to search
CVE-2004-1452
Published: Feb 13, 2005
Modified: Aug 8, 2024
PUBLISHED
Description
Tomcat before 5.0.27-r3 in Gentoo Linux sets the default permissions on the init scripts as tomcat:tomcat, but executes the scripts with root privileges, which could allow local users in the tomcat group to execute arbitrary commands as root by modifying the scripts.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
10951
vdb-entry
x_refsource_BID
gentoo-tomcat-gain-privileges(16993)
vdb-entry
x_refsource_XF
GLSA-200408-15
vendor-advisory
x_refsource_GENTOO
12296
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now