ok.ru: http://217.20.144.201 privilege escalation in apache tomcat SessionEample-script

2015-07-22T12:14:19
ID H1:77679
Type hackerone
Reporter mthirup
Modified 2016-08-29T15:54:07

Description

Tomcat Servlet Examples application was accessible at wmf.ok.ru which leaved ok.ru vulnerable to cookie manipulation (http://lab.onsec.ru/2013/03/tomcat-servlet-examples-threats.html) and whatever else vulnerability Servlet Examples might contain.