The ‘WWW-Authenticate’ HTTP header for BASIC and DIGEST authentcation may expose the local host name or IP address of the machine running Tomcat. (CVE-2010-1157)
Several flaws in the handling of the ‘Tansfer-Encoding’ header could prevent the recycling of buffer. (CVE-2010-2227)
When running under a SecurityManager, it is possible for web applications to be granted read/write permissions to any area on the file system. (CVE-2010-3718)

Binary data 800613.prm

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1157

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2227

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3718

tomcat.apache.org/security-5.html

nessus 48

tomcat 5

redhat 8

openvas 54

fedora 4

altlinux 2

github 3

securityvulns 8

myhack58 1

prion 3

seebug 4

ubuntu 2

ubuntucve 3

cve 3

osv 4

exploitpack 1

freebsd 1

exploitdb 1

debian 2

oraclelinux 3

centos 2

gentoo 1

ibm 1

nessus

Apache Tomcat 5.5.x < 5.5.30 Multiple Vulnerabilities

2011-02-11 00:00:00

Apache Tomcat 5.5.x < 5.5.30

2010-07-16 00:00:00

Apache Tomcat 6.0.x < 6.0.28 Multiple Vulnerabilities

2011-02-11 00:00:00

tomcat

Fixed in Apache Tomcat 5.5.30

2010-07-09 00:00:00

Fixed in Apache Tomcat 6.0.28

2010-07-09 00:00:00

Fixed in Apache Tomcat 7.0.4

2010-10-21 00:00:00

redhat

(RHSA-2010:0584) Important: jbossweb security update

2010-08-02 00:00:00

(RHSA-2010:0583) Important: tomcat5 security update

2010-08-02 00:00:00

(RHSA-2010:0581) Important: tomcat5 and tomcat6 security update

2010-08-02 00:00:00

openvas

Apache Tomcat SecurityManager Security Bypass Vulnerability

2013-11-27 00:00:00

Fedora Update for tomcat6 FEDORA-2010-16528

2010-12-02 00:00:00

Mandriva Update for tomcat5 MDVSA-2010:177 (tomcat5)

2010-09-14 00:00:00

fedora

[SECURITY] Fedora 14 Update: tomcat6-6.0.26-14.fc14

2010-11-14 21:34:08

[SECURITY] Fedora 13 Update: tomcat6-6.0.26-11.fc13

2010-11-01 20:57:28

[SECURITY] Fedora 12 Update: tomcat6-6.0.26-3.fc12

2010-11-01 20:55:02

altlinux

Security fix for the ALT Linux 5 package tomcat6 version 0:6.0.26-alt2_11jpp6

2010-10-18 00:00:00

Security fix for the ALT Linux 5 package tomcat6 version 0:6.0.26-alt4_16jpp6.M50P.1

2011-04-13 00:00:00

github

Apache Tomcat does not properly handle an invalid Transfer-Encoding header

2022-05-14 01:17:03

Improper Limitation of a Pathname to a Restricted Directory in Apache Tomcat

2022-05-14 01:17:02

Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat

2022-05-02 06:19:37

securityvulns

Apache Tomcat DoS and information leak

2010-07-13 00:00:00

[SECURITY] CVE-2010-2227: Apache Tomcat Remote Denial Of Service and Information Disclosure Vulnerability

2010-07-13 00:00:00

[SECURITY] CVE-2010-3718 Apache Tomcat Local bypass of security manger file permissions

2011-02-08 00:00:00

myhack58

Tomcat remote denial of service vulnerability analysis(CVE-2 0 1 0-2 2 2 7)-vulnerability warning-the black bar safety net

2010-11-23 00:00:00

prion

Buffer overflow

2010-07-13 17:30:00

Directory traversal

2011-02-10 18:00:00

Authentication flaw

2010-04-23 14:30:00

seebug

Apache Tomcat SecurityManager Security Bypass Vulnerability

2011-08-01 00:00:00

Apache Tomcat v. 5.5.0 to 5.5.29 & 6.0.0 to 6.0.26 information disclosure vulnerability

2010-04-23 00:00:00

Apache Tomcat认证头信息泄露漏洞

2010-04-26 00:00:00

ubuntu

Tomcat vulnerability

2010-08-25 00:00:00

Tomcat vulnerabilities

2011-03-29 00:00:00

ubuntucve

CVE-2010-2227

2010-07-13 00:00:00

CVE-2010-3718

2011-02-10 00:00:00

CVE-2010-1157

2010-04-23 00:00:00

cve

CVE-2010-2227

2010-07-13 17:30:00

CVE-2010-3718

2011-02-10 18:00:00

CVE-2010-1157

2010-04-23 14:30:00

osv

Apache Tomcat does not properly handle an invalid Transfer-Encoding header

2022-05-14 01:17:03

Improper Limitation of a Pathname to a Restricted Directory in Apache Tomcat

2022-05-14 01:17:02

Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat

2022-05-02 06:19:37

exploitpack

Apache Tomcat 5.5.0 5.5.29 6.0.0 6.0.26 - Information Disclosure

2010-04-22 00:00:00

freebsd

tomcat -- information disclosure vulnerability

2010-04-22 00:00:00

exploitdb

Apache Tomcat 5.5.0 < 5.5.29 / 6.0.0 < 6.0.26 - Information Disclosure

2010-04-22 00:00:00

debian

[SECURITY] [DSA 2207-1] tomcat5.5 security update

2011-03-29 22:35:34

[SECURITY] [DSA 2160-1] tomcat6 security update

2011-02-13 18:36:11

oraclelinux

tomcat5 security update

2010-08-02 00:00:00

tomcat6 security and bug fix update

2011-05-28 00:00:00

tomcat5 security update

2011-12-20 00:00:00

centos

tomcat5 security update

2010-08-03 00:39:04

tomcat5 security update

2011-12-20 19:18:57

gentoo

Apache Tomcat: Multiple vulnerabilities

2012-06-24 00:00:00

ibm

Security Bulletin: Apache Log4j Vulnerabilities Affect IBM Sterling B2B Integrator

2021-10-06 14:56:49

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

JSON

Related for 800613.PRM