Vulnerability Details : CVE-2009-3548

Exploit prediction scoring system (EPSS) score for CVE-2009-3548

Metasploit modules for CVE-2009-3548

• Apache Tomcat Manager Application Deployer Authenticated Code Execution

  Disclosure Date : 2009-11-09

  exploit/multi/http/tomcat_mgr_deploy

  This module can be used to execute a payload on Apache Tomcat servers that have an exposed "manager" application. The payload is uploaded as a WAR archive containing a jsp application using a PUT request. The manager application can also be abused using /manager/html/upload, but that method is not implemented in this module. NOTE: The compatible payload sets vary based on the selected target. For example, you must select the Windows target to use native Windows payloads. Authors: - jduck <[email protected]>

  More information

• Apache Tomcat Manager Authenticated Upload Code Execution

  Disclosure Date : 2009-11-09

  exploit/multi/http/tomcat_mgr_upload

  This module can be used to execute a payload on Apache Tomcat servers that have an exposed "manager" application. The payload is uploaded as a WAR archive containing a jsp application using a POST request against the /manager/html/upload component. NOTE: The compatible payload sets vary based on the selected target. For example, you must select the Windows target to use native Windows payloads. Authors: - rangercha

  More information

• Tomcat Application Manager Login Utility

  auxiliary/scanner/http/tomcat_mgr_login

  This module simply attempts to login to a Tomcat Application Manager instance using a specific user/pass. Authors: - MC <[email protected]> - Matteo Cantoni <g[email protected]> - jduck <[email protected]>

  More information

CVSS scores for CVE-2009-3548

CWE ids for CVE-2009-3548

• CWE-255
  Assigned by: [email protected] (Primary)

References for CVE-2009-3548

Products affected by CVE-2009-3548