CVE Number – CVE-2018-11784
A vulnerability in Apache Tomcat could allow an unauthenticated, remote attacker to conduct an open redirect attack on a targeted system.
The vulnerability is due to improper validation of URLs by the affected software when the default servlet returns a redirect to a directory. An attacker could exploit this vulnerability by submitting a malicious URL to a targeted system. A successful exploit could cause the redirect to go to any URI of the attacker’s choice.
The Apache Software Foundation confirmed the vulnerability and released software updates.
To exploit this vulnerability, the attacker may need access to trusted, internal networks behind a firewall in order to send a crafted URL to the targeted system. This access requirement may reduce the likelihood of a successful exploit.
Administrators are advised to apply the appropriate software updates.
Administrators are advised to allow only trusted users to have network access.
Administrators are advised to monitor affected systems.
The Apache Software Foundation released a security advisory at the following link: CVE-2018-11784
The Apache Software Foundation released software updates at the following link: Apache Tomcat 9.0.12
Duncan is a technology professional with over 20 years experience of working in various IT roles. He has a interest in cyber security, and has a wide range of other skills in radio, electronics and telecommunications.