Lucene search

Moderate: Red Hat Security Advisory: Red Hat JBoss Web Server 3.0.2 security update

🗓️ 16 Dec 2015 18:59:19Reported by RedHatType

Security update for Red Hat JBoss Web Server 3.0.

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
Tenable Nessus	RHEL 6 : JBoss Web Server (RHSA-2015:2659)	17 Dec 201500:00	–	nessus
Tenable Nessus	RHEL 7 : JBoss Web Server (RHSA-2015:2660)	17 Dec 201500:00	–	nessus
Tenable Nessus	RHEL 7 : httpd (RHSA-2015:0325)	5 Mar 201500:00	–	nessus
Tenable Nessus	Oracle Linux 7 : httpd (ELSA-2015-0325)	13 Mar 201500:00	–	nessus
Tenable Nessus	Scientific Linux Security Update : httpd on SL7.x x86_64 (20150305)	26 Mar 201500:00	–	nessus
Tenable Nessus	Debian DLA-71-1 : apache2 security update	26 Mar 201500:00	–	nessus
Tenable Nessus	CentOS 7 : httpd (CESA-2015:0325)	18 Mar 201500:00	–	nessus
Tenable Nessus	RHEL 5 / 6 / 7 : JBoss Web Server (RHSA-2016:0061)	22 Jan 201600:00	–	nessus
Tenable Nessus	SuSE 11.3 Security Update : apache2 (SAT Patch Number 10533)	9 Apr 201500:00	–	nessus
Tenable Nessus	Amazon Linux AMI : httpd24 (ALAS-2015-483)	13 Feb 201500:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
RedHat	6	noarch	apache-commons-collections-eap6	3.2.1-18.redhat_7.1.ep6.el6	apache-commons-collections-eap6-3.2.1-18.redhat_7.1.ep6.el6.noarch.rpm
RedHat	6	noarch	apache-commons-collections-tomcat-eap6	3.2.1-18.redhat_7.1.ep6.el6	apache-commons-collections-tomcat-eap6-3.2.1-18.redhat_7.1.ep6.el6.noarch.rpm
RedHat	6	i686	httpd24	2.4.6-59.ep7.el6	httpd24-2.4.6-59.ep7.el6.i686.rpm
RedHat	6	x86_64	httpd24	2.4.6-59.ep7.el6	httpd24-2.4.6-59.ep7.el6.x86_64.rpm
RedHat	6	i686	httpd24-debuginfo	2.4.6-59.ep7.el6	httpd24-debuginfo-2.4.6-59.ep7.el6.i686.rpm
RedHat	6	x86_64	httpd24-debuginfo	2.4.6-59.ep7.el6	httpd24-debuginfo-2.4.6-59.ep7.el6.x86_64.rpm
RedHat	6	i686	httpd24-devel	2.4.6-59.ep7.el6	httpd24-devel-2.4.6-59.ep7.el6.i686.rpm
RedHat	6	x86_64	httpd24-devel	2.4.6-59.ep7.el6	httpd24-devel-2.4.6-59.ep7.el6.x86_64.rpm
RedHat	6	noarch	httpd24-manual	2.4.6-59.ep7.el6	httpd24-manual-2.4.6-59.ep7.el6.noarch.rpm
RedHat	6	i686	httpd24-tools	2.4.6-59.ep7.el6	httpd24-tools-2.4.6-59.ep7.el6.i686.rpm

Source	Link
seclists	www.seclists.org/bugtraq/2016/Feb/149
tomcat	www.tomcat.apache.org/security-6.html
tomcat	www.tomcat.apache.org/security-7.html
tomcat	www.tomcat.apache.org/security-8.html
access	www.access.redhat.com/security/cve/CVE-2013-5704
access	www.access.redhat.com/security/cve/CVE-2014-0230
access	www.access.redhat.com/security/cve/CVE-2014-3581
access	www.access.redhat.com/security/cve/CVE-2015-3183
access	www.access.redhat.com/security/cve/CVE-2015-5174
access	www.access.redhat.com/security/updates/classification/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Dec 2015 18:19Current

7.6High risk

Vulners AI Score7.6

CVSS24

CVSS34.3

EPSS0.79079

red hat jboss apache http server tomcat connector http request smuggling cve-2014-0230 cve-2013-5704 cve-2015-3183 jira#jws-228 remote attacker