Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2009 Greenbone AGOPENVAS:1361412562310860345
HistoryFeb 16, 2009 - 12:00 a.m.

Fedora Update for tomcat5 FEDORA-2008-1603

2009-02-1600:00:00
Copyright (C) 2009 Greenbone AG
plugins.openvas.org
2

5 Medium

AI Score

Confidence

High

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.968 High

EPSS

Percentile

99.7%

JSON

The remote host is missing an update for the

# SPDX-FileCopyrightText: 2009 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_xref(name:"URL", value:"https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html");
  script_oid("1.3.6.1.4.1.25623.1.0.860345");
  script_version("2023-07-04T05:05:35+0000");
  script_tag(name:"last_modification", value:"2023-07-04 05:05:35 +0000 (Tue, 04 Jul 2023)");
  script_tag(name:"creation_date", value:"2009-02-16 14:16:57 +0100 (Mon, 16 Feb 2009)");
  script_tag(name:"cvss_base", value:"6.4");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:N");
  script_xref(name:"FEDORA", value:"2008-1603");
  script_cve_id("CVE-2007-5342", "CVE-2007-5333", "CVE-2007-5461", "CVE-2007-6286", "CVE-2007-1355", "CVE-2007-3386", "CVE-2007-3385", "CVE-2007-3382", "CVE-2007-2450", "CVE-2007-2449", "CVE-2007-1358", "CVE-2008-0002");
  script_name("Fedora Update for tomcat5 FEDORA-2008-1603");
  script_tag(name:"summary", value:"The remote host is missing an update for the 'tomcat5'
  package(s) announced via the referenced advisory.");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2009 Greenbone AG");
  script_family("Fedora Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms", re:"ssh/login/release=FC8");
  script_tag(name:"affected", value:"tomcat5 on Fedora 8");
  script_tag(name:"solution", value:"Please install the updated package(s).");
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release)
  exit(0);

res = "";

if(release == "FC8")
{

  if ((res = isrpmvuln(pkg:"tomcat5", rpm:"tomcat5~5.5.26~1jpp.2.fc8", rls:"FC8")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99);
  exit(0);
}

Related

openvas 33
nessus 38
fedora 5
altlinux 1
tomcat 8
redhat 8
gentoo 1
debian 2
osv 11
centos 3
oraclelinux 3
securityvulns 15
seebug 6
github 9
ubuntucve 11
jvn 4
veracode 11
prion 11
cve 10
atlassian 2
exploitpack 1
packetstorm 3
freebsd 1
cert 1
checkpoint_advisories 1
openvas
openvas
Fedora Update for tomcat5 FEDORA-2008-1603
2009-02-16 00:00:00
Fedora Update for tomcat5 FEDORA-2008-1467
2009-02-16 00:00:00
Fedora Update for tomcat5 FEDORA-2008-1467
2009-02-16 00:00:00
nessus
nessus
Fedora 7 : tomcat5-5.5.26-1jpp.2.fc7 (2008-1467)
2008-02-14 00:00:00
Fedora 8 : tomcat5-5.5.26-1jpp.2.fc8 (2008-1603)
2008-02-14 00:00:00
Fedora 8 : tomcat5-5.5.25-1jpp.1.fc8 (2007-3474)
2007-11-20 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: tomcat5-5.5.26-1jpp.2.fc7
2008-02-13 04:55:03
[SECURITY] Fedora 8 Update: tomcat5-5.5.26-1jpp.2.fc8
2008-02-13 05:14:35
[SECURITY] Fedora 8 Update: tomcat5-5.5.25-1jpp.1.fc8
2007-11-17 05:37:36
altlinux
altlinux
Security fix for the ALT Linux 5 package tomcat5 version 0:5.5.25-alt1_1.1jpp5.0
2007-11-30 00:00:00
tomcat
tomcat
Fixed in Apache Tomcat 6.0.16
2008-02-08 00:00:00
Fixed in Apache Tomcat 5.5.26
2008-02-05 00:00:00
Fixed in Apache Tomcat 5.5.25, 5.0.SVN
2007-09-08 00:00:00
redhat
redhat
(RHSA-2007:0876) Moderate: tomcat security update
2007-10-11 00:00:00
(RHSA-2008:0195) Moderate: tomcat security update
2008-04-28 00:00:00
(RHSA-2007:0871) Moderate: tomcat security update
2007-09-26 00:00:00
gentoo
gentoo
Tomcat: Multiple vulnerabilities
2008-04-10 00:00:00
debian
debian
[SECURITY] [DSA 1447-1] New tomcat5.5 packages fix several vulnerabilities
2008-01-03 21:54:49
[SECURITY] [DSA 1453-1] New tomcat5 packages fix several vulnerabilities
2008-01-07 18:41:20
osv
osv
tomcat5.5 several vulnerabilities
2008-01-03 00:00:00
tomcat5 - several vulnerabilities
2008-01-07 00:00:00
Exposure of Sensitive Information in Apache Tomcat
2022-05-01 18:32:19
centos
centos
tomcat5 security update
2007-09-28 08:11:50
tomcat5 security update
2008-03-19 00:04:06
tomcat5 security update
2007-07-22 15:57:46
oraclelinux
oraclelinux
Moderate: tomcat security update
2007-09-26 00:00:00
Moderate: tomcat security update
2008-03-11 00:00:00
Moderate: tomcat security update
2007-07-17 00:00:00
securityvulns
securityvulns
CA20090123-01: Cohesion Tomcat Multiple Vulnerabilities (Updated - v1.1)
2009-01-28 00:00:00
Apache Tomcat multiple security vulnerabilities
2007-08-14 00:00:00
Apache Tomcat crossite scripting
2007-06-14 00:00:00
seebug
seebug
Apache Tomcat多个远程信息泄露漏洞
2007-08-23 00:00:00
Apache Tomcat重复请求处理安全漏洞(CVE-2007-6286)
2012-09-27 00:00:00
Apache Tomcat Host Manager Servlet跨站脚本执行漏洞
2007-08-23 00:00:00
github
github
Exposure of Sensitive Information in Apache Tomcat
2022-05-01 18:32:19
Apache Tomcat Does Not Properly Handle Empty Requests
2022-05-01 18:41:17
Apache Tomcat Mishandles Character Sequence in Cookies
2022-05-01 18:13:14
ubuntucve
ubuntucve
CVE-2007-5333
2008-02-12 00:00:00
CVE-2007-6286
2008-02-12 00:00:00
CVE-2007-3386
2007-08-14 00:00:00
jvn
jvn
JVN#09470767 Apache Tomcat fails to properly handle cookie value
2008-02-12 00:00:00
JVN#59851336 Apache Tomcat Host Manager cross-site scripting vulnerability
2007-08-15 00:00:00
JVN#16535199: Apache Tomcat Accept-Language Header Cross-Site Scripting Vulnerability
2007-06-19 00:00:00
veracode
veracode
Session Hijacking
2018-11-12 08:37:47
Session Hijacking
2018-11-13 05:10:16
Replay Attack
2018-11-09 05:47:09
prion
prion
Code injection
2008-02-12 01:00:00
Server side request forgery (ssrf)
2008-02-12 01:00:00
Design/Logic Flaw
2007-08-14 22:17:00
cve
cve
CVE-2007-5333
2008-02-12 01:00:00
CVE-2007-6286
2008-02-12 01:00:00
CVE-2007-1358
2007-05-10 00:19:00
atlassian
atlassian
Upgrade standalone Tomcat to 5.5.25
2008-01-15 04:23:59
Upgrade standalone Tomcat to 5.5.25
2008-01-15 04:23:59
exploitpack
exploitpack
Apache Tomcat 6.0.15 - Cookie Quote Handling Remote Information Disclosure
2008-02-09 00:00:00
packetstorm
packetstorm
CVE-2007-3386.txt
2007-08-14 00:00:00
CVE-2007-1355.txt
2007-05-22 00:00:00
CVE-2007-2449.txt
2007-06-15 00:00:00
freebsd
freebsd
tomcat -- XSS vulnerability in sample applications
2007-05-19 00:00:00
cert
cert
Apache Tomcat fails to properly handle cookies containing single quotes
2007-08-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache Tomcat WebDav Remote Information Disclosure (CVE-2007-5461)
2013-11-18 00:00:00

5 Medium

AI Score

Confidence

High

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

0.968 High

EPSS

Percentile

99.7%

JSON
Related for OPENVAS:1361412562310860345
openvas33nessus38fedora5altlinux1tomcat8redhat8gentoo1debian2osv11centos3oraclelinux3securityvulns15seebug6github9ubuntucve11jvn4veracode11prion11cve10atlassian2exploitpack1packetstorm3freebsd1cert1checkpoint_advisories1