Skip to main content
Kofax

Apache Tomcat Ghostcat vulnerability for Equitrac Office / Express 5.x

3023444

Information:

Apache Tomcat Ghostcat vulnerability (https://cve.mitre.org/cgi-bin/cvenam...=CVE-2020-1938) has been identified.  The following information can be used for Equitrac Office and Equitrac Express to avoid this vulnerability.

Equitrac does not utilize the AJP feature of Apache Tomcat, so the protocol can be safely disabled. Edit the <Tomcat>/conf/Server.xml file and comment out the AJP as required.

Steps to modify Apache Tomcat configuration for Equitrac Office / Express:

  1. Stop the DWS service
  2. Navigate to the install folder [by default: C:\Users\<service_account>\AppData\Local\Equitrac\Equitrac Platform Component\EQDWSSrv\webserver\conf ] where <service account> is the account running the EQ services.
  3. Edit the Server.XML file
  4. Find the line <Connector port = “8009” protocol = “AJP / 1.x” redirectPort = “8443” />
  5. Edit the line to comment it out, by changing it to [<!-- <Connector port="8009" protocol="AJP/1.3" redirectPort="8443" /> --> ]
  6. Save the Server.XML file
  7. Start DWS service

NOTE: The server.xml file located in C:\Program Files\Equitrac\Express\DWS\apache-tomcat\conf is not used.

Links about the vulnerability:

https://www.chaitin.cn/en/ghostcat
https://blog.trendmicro.com/trendlab...vd-2020-10487/

 

Applies to:  

Product Version
Equitrac Office 5.x
Equitrac Express 5.x