Lucene search

K
nvd[email protected]NVD:CVE-2008-0002
HistoryFeb 12, 2008 - 1:00 a.m.

CVE-2008-0002

2008-02-1201:00:00
web.nvd.nist.gov
6

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

7.5

Confidence

High

EPSS

0.005

Percentile

75.7%

Apache Tomcat 6.0.0 through 6.0.15 processes parameters in the context of the wrong request when an exception occurs during parameter processing, which might allow remote attackers to obtain sensitive information, as demonstrated by disconnecting during this processing in order to trigger the exception.

Affected configurations

Nvd
Node
apachetomcatMatch6.0.5
OR
apachetomcatMatch6.0.6
OR
apachetomcatMatch6.0.7
OR
apachetomcatMatch6.0.8
OR
apachetomcatMatch6.0.9
OR
apachetomcatMatch6.0.10
OR
apachetomcatMatch6.0.11
OR
apachetomcatMatch6.0.12
OR
apachetomcatMatch6.0.13
OR
apachetomcatMatch6.0.14
OR
apachetomcatMatch6.0.15
VendorProductVersionCPE
apachetomcat6.0.5cpe:2.3:a:apache:tomcat:6.0.5:*:*:*:*:*:*:*
apachetomcat6.0.6cpe:2.3:a:apache:tomcat:6.0.6:*:*:*:*:*:*:*
apachetomcat6.0.7cpe:2.3:a:apache:tomcat:6.0.7:*:*:*:*:*:*:*
apachetomcat6.0.8cpe:2.3:a:apache:tomcat:6.0.8:*:*:*:*:*:*:*
apachetomcat6.0.9cpe:2.3:a:apache:tomcat:6.0.9:*:*:*:*:*:*:*
apachetomcat6.0.10cpe:2.3:a:apache:tomcat:6.0.10:*:*:*:*:*:*:*
apachetomcat6.0.11cpe:2.3:a:apache:tomcat:6.0.11:*:*:*:*:*:*:*
apachetomcat6.0.12cpe:2.3:a:apache:tomcat:6.0.12:*:*:*:*:*:*:*
apachetomcat6.0.13cpe:2.3:a:apache:tomcat:6.0.13:*:*:*:*:*:*:*
apachetomcat6.0.14cpe:2.3:a:apache:tomcat:6.0.14:*:*:*:*:*:*:*
Rows per page:
1-10 of 111

References

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

7.5

Confidence

High

EPSS

0.005

Percentile

75.7%