{"id":5805,"date":"2014-02-14T19:39:13","date_gmt":"2014-02-14T19:39:13","guid":{"rendered":"http:\/\/megahost.ro\/blog\/?p=5805"},"modified":"2014-02-14T19:39:13","modified_gmt":"2014-02-14T19:39:13","slug":"o-noua-vulnerabilitate-descoperita-in-apache-tomcat-server","status":"publish","type":"post","link":"https:\/\/megahost.ro\/blog\/o-noua-vulnerabilitate-descoperita-in-apache-tomcat-server.html","title":{"rendered":"O noua vulnerabilitate descoperita in Apache Tomcat server"},"content":{"rendered":"<p><a href=\"https:\/\/megahost.ro\/blog\/wp-content\/uploads\/2014\/02\/tomcat.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft  wp-image-5807\" alt=\"tomcat\" src=\"https:\/\/megahost.ro\/blog\/wp-content\/uploads\/2014\/02\/tomcat.jpg\" width=\"206\" height=\"99\" \/><\/a>Cercetatorii de securitate de la Trustwave au descoperit recent o noua vulnerabilitate care permite atacatorilor sa lanseze atacuri de tip denial-of-service impotriva site-urilor gazduite pe servere Apache Tomcat.<\/p>\n<p>Apache Tomcat este un server web utilizat la scara larga pentru hosting de aplicatii web dezvoltate cu tehnologii Java Servlet si JavaServer Pages (JSP).<\/p>\n<p>Noua vulnerabilitate de tip denial-of-service afecteaza Apache Commons FileUpload, un modul de sine statator pe care dezvoltatorii il pot utiliza pentru a adauga capacitatea de upload aplicatiilor web Java. Acest modul este de asemenea inclus by default si \u00een Apache Tomcat versiunile 7 si 8.<\/p>\n<p>De atunci, vulnerabilitatea a fost eliminata din noua versiune Commons FileUpload 1.3.1, care a fost lansata pe 7 februarie si din versiunea Tomcat 8.0.3 beta lansata pe 11 februarie. De asemenea, va urma sa fie lansat si Apache Tomcat 7.0.51, dar aceasta versiune a serverului nu este inca gata pentru a fi lansata.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Cercetatorii de securitate de la Trustwave au descoperit recent o noua vulnerabilitate care permite atacatorilor sa lanseze atacuri de tip denial-of-service impotriva site-urilor gazduite pe servere Apache Tomcat.<\/p>\n","protected":false},"author":1,"featured_media":5807,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[20,5],"tags":[611,685,684],"class_list":["post-5805","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hosting","category-securitate-online","tag-apache-tomcat","tag-hosting","tag-securitate-online"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/megahost.ro\/blog\/wp-json\/wp\/v2\/posts\/5805","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/megahost.ro\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/megahost.ro\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/megahost.ro\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/megahost.ro\/blog\/wp-json\/wp\/v2\/comments?post=5805"}],"version-history":[{"count":0,"href":"https:\/\/megahost.ro\/blog\/wp-json\/wp\/v2\/posts\/5805\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/megahost.ro\/blog\/wp-json\/wp\/v2\/media\/5807"}],"wp:attachment":[{"href":"https:\/\/megahost.ro\/blog\/wp-json\/wp\/v2\/media?parent=5805"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/megahost.ro\/blog\/wp-json\/wp\/v2\/categories?post=5805"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/megahost.ro\/blog\/wp-json\/wp\/v2\/tags?post=5805"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}