Lucene search
Tenable800609.PRMHistoryFeb 11, 2011 - 12:00 a.m.
Apache Tomcat 6.0.x < 6.0.30 Multiple Vulnerabilities
2011-02-1100:00:00
Tenable
www.tenable.com
8
Versions of Tomcat 6.x earlier than 6.0.30 are potentially affected by multiple vulnerabilities :
-
When running under a SecurityManager it is possible for a web application to gain read/write permissions to any area on the file system. (CVE-2010-3718)
-
It is possible to conduct cross-site scripting attacks via the ‘sort’ and ‘orderBy’ parameers of the Manager application. (CVE-2010-4172)
-
The HTML Manager interface displays web application provided data, such as display names, without filtering. (CVE-2011-0013)
Binary data 800609.prmRelated
nessus
nessus
Scientific Linux Security Update : tomcat6 on SL6.x i386/x86_64
2012-08-01 00:00:00
Oracle Linux 6 : tomcat6 (ELSA-2011-0791)
2023-09-07 00:00:00
RHEL 6 : tomcat6 (RHSA-2011:0791)
2011-05-20 00:00:00
redhat
redhat
(RHSA-2011:0791) Moderate: tomcat6 security and bug fix update
2011-05-19 00:00:00
(RHSA-2011:0897) Moderate: JBoss Enterprise Web Server 1.0.2 update
2011-06-22 00:00:00
(RHSA-2011:1845) Moderate: tomcat5 security update
2011-12-20 00:00:00
openvas
openvas
Apache Tomcat 6.0.x < 6.0.30 Multiple Vulnerabilities - Linux
2021-10-29 00:00:00
RedHat Update for tomcat6 RHSA-2011:0791-01
2012-06-06 00:00:00
RedHat Update for tomcat6 RHSA-2011:0791-01
2012-06-06 00:00:00
tomcat
tomcat
Fixed in Apache Tomcat 6.0.30
2011-01-13 00:00:00
Fixed in Apache Tomcat 7.0.4
2010-10-21 00:00:00
Fixed in Apache Tomcat 5.5.32
2011-02-01 00:00:00
oraclelinux
oraclelinux
tomcat6 security and bug fix update
2011-05-28 00:00:00
tomcat5 security update
2011-12-20 00:00:00
tomcat5 security update
2012-04-11 00:00:00
ubuntu
ubuntu
Tomcat vulnerabilities
2011-03-29 00:00:00
Tomcat vulnerability
2011-01-24 00:00:00
osv
osv
tomcat6 - several
2011-02-13 00:00:00
Improper Limitation of a Pathname to a Restricted Directory in Apache Tomcat
2022-05-14 01:17:02
Improper Neutralization of Input During Web Page Generation in Apache Tomcat
2022-05-14 02:42:46
securityvulns
securityvulns
Apache Tomcat multiple security vulnerabilities
2011-02-08 00:00:00
Apache Tomcat crossite scripting
2010-11-24 00:00:00
debian
debian
[SECURITY] [DSA 2160-1] tomcat6 security update
2011-02-13 18:36:11
seebug
seebug
Apache Tomcat SecurityManager Security Bypass Vulnerability
2011-08-01 00:00:00
ubuntucve
ubuntucve
cve
cve
prion
prion
Directory traversal
2011-02-10 18:00:00
Cross site scripting
2010-11-26 20:00:00
Cross site scripting
2011-02-19 01:00:00
github
github
Improper Limitation of a Pathname to a Restricted Directory in Apache Tomcat
2022-05-14 01:17:02
Improper Neutralization of Input During Web Page Generation in Apache Tomcat
2022-05-03 03:25:09
Improper Neutralization of Input During Web Page Generation in Apache Tomcat
2022-05-14 02:42:46
packetstorm
packetstorm
Apache Tomcat Manager Cross Site Scripting
2011-02-05 00:00:00
freebsd
freebsd
tomcat -- Cross-site scripting vulnerability
2010-11-12 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: tomcat6-6.0.26-27.fc14
2011-10-20 09:55:07
centos
centos
tomcat5 security update
2011-12-20 19:18:57
gentoo
gentoo
Apache Tomcat: Multiple vulnerabilities
2012-06-24 00:00:00
ibm
ibm
Related for 800609.PRM