{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"state":"PUBLISHED","cveId":"CVE-2016-1240","assignerOrgId":"79363d38-fa19-49d1-9214-5f28da3f3ac5","assignerShortName":"debian","dateUpdated":"2024-08-05T22:48:13.696Z","dateReserved":"2015-12-27T00:00:00.000Z","datePublished":"2016-10-03T00:00:00.000Z"},"containers":{"cna":{"providerMetadata":{"orgId":"79363d38-fa19-49d1-9214-5f28da3f3ac5","shortName":"debian","dateUpdated":"2023-02-06T00:00:00.000Z"},"descriptions":[{"lang":"en","value":"The Tomcat init script in the tomcat7 package before 7.0.56-3+deb8u4 and tomcat8 package before 8.0.14-1+deb8u3 on Debian jessie and the tomcat6 and libtomcat6-java packages before 6.0.35-1ubuntu3.8 on Ubuntu 12.04 LTS, the tomcat7 and libtomcat7-java packages before 7.0.52-1ubuntu0.7 on Ubuntu 14.04 LTS, and tomcat8 and libtomcat8-java packages before 8.0.32-1ubuntu1.2 on Ubuntu 16.04 LTS allows local users with access to the tomcat account to gain root privileges via a symlink attack on the Catalina log file, as demonstrated by /var/log/tomcat7/catalina.out."}],"affected":[{"vendor":"n/a","product":"n/a","versions":[{"version":"n/a","status":"affected"}]}],"references":[{"name":"1036845","tags":["vdb-entry"],"url":"http://www.securitytracker.com/id/1036845"},{"name":"DSA-3670","tags":["vendor-advisory"],"url":"http://www.debian.org/security/2016/dsa-3670"},{"name":"GLSA-201705-09","tags":["vendor-advisory"],"url":"https://security.gentoo.org/glsa/201705-09"},{"url":"http://legalhackers.com/advisories/Tomcat-DebPkgs-Root-Privilege-Escalation-Exploit-CVE-2016-1240.html"},{"name":"93263","tags":["vdb-entry"],"url":"http://www.securityfocus.com/bid/93263"},{"name":"RHSA-2017:0457","tags":["vendor-advisory"],"url":"http://rhn.redhat.com/errata/RHSA-2017-0457.html"},{"url":"https://security.netapp.com/advisory/ntap-20180731-0002/"},{"name":"40450","tags":["exploit"],"url":"https://www.exploit-db.com/exploits/40450/"},{"name":"DSA-3669","tags":["vendor-advisory"],"url":"http://www.debian.org/security/2016/dsa-3669"},{"name":"RHSA-2017:0455","tags":["vendor-advisory"],"url":"https://access.redhat.com/errata/RHSA-2017:0455"},{"name":"20161001 CVE-2016-1240 - Tomcat packaging on Debian-based distros - Local Root Privilege Escalation","tags":["mailing-list"],"url":"http://www.securityfocus.com/archive/1/539519/100/0/threaded"},{"name":"RHSA-2017:0456","tags":["vendor-advisory"],"url":"https://access.redhat.com/errata/RHSA-2017:0456"},{"name":"USN-3081-1","tags":["vendor-advisory"],"url":"http://www.ubuntu.com/usn/USN-3081-1"},{"url":"http://packetstormsecurity.com/files/170857/Apache-Tomcat-On-Ubuntu-Log-Init-Privilege-Escalation.html"}],"problemTypes":[{"descriptions":[{"type":"text","lang":"en","description":"n/a"}]}],"datePublic":"2016-09-15T00:00:00.000Z"},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-05T22:48:13.696Z"},"title":"CVE Program Container","references":[{"name":"1036845","tags":["vdb-entry","x_transferred"],"url":"http://www.securitytracker.com/id/1036845"},{"name":"DSA-3670","tags":["vendor-advisory","x_transferred"],"url":"http://www.debian.org/security/2016/dsa-3670"},{"name":"GLSA-201705-09","tags":["vendor-advisory","x_transferred"],"url":"https://security.gentoo.org/glsa/201705-09"},{"url":"http://legalhackers.com/advisories/Tomcat-DebPkgs-Root-Privilege-Escalation-Exploit-CVE-2016-1240.html","tags":["x_transferred"]},{"name":"93263","tags":["vdb-entry","x_transferred"],"url":"http://www.securityfocus.com/bid/93263"},{"name":"RHSA-2017:0457","tags":["vendor-advisory","x_transferred"],"url":"http://rhn.redhat.com/errata/RHSA-2017-0457.html"},{"url":"https://security.netapp.com/advisory/ntap-20180731-0002/","tags":["x_transferred"]},{"name":"40450","tags":["exploit","x_transferred"],"url":"https://www.exploit-db.com/exploits/40450/"},{"name":"DSA-3669","tags":["vendor-advisory","x_transferred"],"url":"http://www.debian.org/security/2016/dsa-3669"},{"name":"RHSA-2017:0455","tags":["vendor-advisory","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2017:0455"},{"name":"20161001 CVE-2016-1240 - Tomcat packaging on Debian-based distros - Local Root Privilege Escalation","tags":["mailing-list","x_transferred"],"url":"http://www.securityfocus.com/archive/1/539519/100/0/threaded"},{"name":"RHSA-2017:0456","tags":["vendor-advisory","x_transferred"],"url":"https://access.redhat.com/errata/RHSA-2017:0456"},{"name":"USN-3081-1","tags":["vendor-advisory","x_transferred"],"url":"http://www.ubuntu.com/usn/USN-3081-1"},{"url":"http://packetstormsecurity.com/files/170857/Apache-Tomcat-On-Ubuntu-Log-Init-Privilege-Escalation.html","tags":["x_transferred"]}]}]}}