CVE-2016-6325

Name of the Vulnerable Software and Affected Versions Tomcat package on Red Hat Enterprise Linux (RHEL) versions 5 through 7 JBoss Web Server version 3.0 JBoss EWS version 2

Description The issue is related to weak permissions for certain configuration files, specifically (1) /etc/sysconfig/tomcat and (2) /etc/tomcat/tomcat.conf. This weakness allows local users to gain privileges by leveraging membership in the tomcat group.

Recommendations For Tomcat package on Red Hat Enterprise Linux (RHEL) versions 5 through 7, consider restricting access to the /etc/sysconfig/tomcat and /etc/tomcat/tomcat.conf files to prevent local users from gaining privileges. For JBoss Web Server version 3.0, restrict access to the /etc/sysconfig/tomcat and /etc/tomcat/tomcat.conf files to minimize the risk of exploitation. For JBoss EWS version 2, restrict access to the /etc/sysconfig/tomcat and /etc/tomcat/tomcat.conf files to prevent local users from gaining privileges.