We are currently working on the forum. For the short-term, all forum content will be in read-only format. We apologize for the interruption and look forward to collaborating with you shortly. All the best in your research!

vulnerability in tomcat's ajp connector

GerbenRienkGerbenRienk Posts: 838 ✭✭✭
January 3 2020 a Chinese team have reported a (pretty serious) vulnerability in the ajp connector of tomcat 6, 7, 8 and 9.
Apache has released a patch for this. If you want to read more about the vulnerability and whether you should apply the patch and how, read this wiki-page:
https://en.wikibooks.org/wiki/OpenClinica_User_Manual/TomcatAjpVulnerability
Gerben Rienk

Comments

  • ccollinsccollins Posts: 383 admin
    via Email
    Thanks Gerben! Appreciate the thorough write up.

    FYI if you're using hosting from OpenClinica we checked this today and you
    are okay, please reach out to your support team if you have any questions.

    Regards,
    Cal



Sign In or Register to comment.