Description
An remote code-execution vulnerability was found in Apache Tomcat. These vulnerability can be exploited remotely via a specially designed HTTP request. By exploiting these vulnerability malicious users can remotely execute arbitrary code in the context of the affected application.
Technical details
This vulnerablity only affects systems with HTTP PUTs enabled, it could be exploited to upload a malicious JSP file to a targeted server.
Original advisories
Exploitation
Public exploits exist for this vulnerability.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Related products
CVE list
- CVE-2017-12617 critical
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com