RE: CVE-2024-50379 Apache Tomcat - RCE via write-enabled default servlet
Hello There, Good day! Could you kindly help clarify the following regarding CVE-2024-50379? In the default Tomcat setup, the readonly initialization parameter of the DefaultServlet is not write-enabled, even for a case-insensitive file system (Reference: https://tomcat.apache.org/tomcat-9.0-doc/default -servlet.html). Given this, am I correct in understanding that this vulnerability should not affect default Tomcat installations? I appreciate your guidance and look forward to your response. Kind regards Thiru
Re: CVE-2024-50379 Apache Tomcat - RCE via write-enabled default servlet
I truly appreciate your swift response, Mark. Thank you so much! On Thu, Dec 19, 2024 at 4:23 PM Mark Thomas wrote: > On 19/12/2024 10:49, Thiru wrote: > > Hello There, > > > > Good day! > > > > Could you kindly help clarify the following regarding CVE-2024-50379? > > > > In the default Tomcat setup, the readonly initialization parameter of the > > DefaultServlet is not write-enabled, even for a case-insensitive file > > system (Reference: https://tomcat.apache.org/tomcat-9.0-doc/default > > -servlet.html). > > > > Given this, am I correct in understanding that this vulnerability should > > not affect default Tomcat installations? > > You are correct. > > Mark > > > - > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > >
Problem with WindowsXP
I cant run my Apache Tomcat5.5.7.1 in WindowsXP. I'm receiving an error message* "Windows could'nt run Apache tomcat server in your local machine" * while try to START my tomcat5.X web server in WIndowsXP. Please help me to recover this error. Why it happens? How to run my server? -- thiruchengodu Bangalore
Probm in starting Tomcat5.5
Hi, i'm using Tomcat 5.5.1 in windows xp, Now i cant start Tomcat and receiving the following err while try to start...PLEASE HELP ME TO RECOVER THIS PROBLEM and why it happens? *Error:* *Windows could'nt start TOMCAT in ur local machine.* -- thiruchengodu Bangalore
