11 matches found
MiracleLinux 4 : tomcat6-6.0.24-55.AXS4 (AXSA:2013-467:03)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-467:03 advisory. Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Jav...
SUSE CVE-2013-2051
The Tomcat 6 DIGEST authentication functionality as used in Red Hat Enterprise Linux 6 allows remote attackers to bypass intended access restrictions by performing a replay attack after a nonce becomes stale. NOTE: this issue is due to an incomplete fix for CVE-2012-5887...
Oracle: Security Advisory (ELSA-2013-0869)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2013-2051
The Tomcat 6 DIGEST authentication functionality as used in Red Hat Enterprise Linux 6 allows remote attackers to bypass intended access restrictions by performing a replay attack after a nonce becomes stale. NOTE: this issue is due to an incomplete fix for CVE-2012-5887...
CVE-2013-2051
CVE-2013-2051 describes a replay-attack bypass in Tomcat 6 Digest authentication when a nonce becomes stale, due to an incomplete fix for CVE-2012-5887. The vulnerability allows remote attackers to bypass access restrictions by replaying valid requests after nonce expiration. Affected product: Ap...
Apache Tomcat摘要验证不完整修复安全漏洞
Bugtraq ID:60187 CVE ID:CVE-2013-2051 Apache Tomcat是一个流行的开源JSP应用服务器程序。 Apache Tomcat中的摘要验证DIGEST Authentication实现存在重放攻击漏洞,允许远程攻击者利用漏洞绕过某些安全限制,进行未授权操作,此漏洞是由于CVE-2012-5887不完整修复引起的。 0 Apache Group Tomcat 7.0.0 - 7.0.30 Apache Group Tomcat 6.0.0 - 6.0.36 Apache Group Tomcat 5.5.0 - 5.5.36 厂商解决方案...
RedHat Update for tomcat6 RHSA-2013:0869-01
Check for the Version of tomcat6 OpenVAS Vulnerability Test RedHat Update for tomcat6 RHSA-2013:0869-01 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Apache Tomcat DIGEST Authentication重放攻击漏洞(CVE-2013-2051)
BUGTRAQ ID: 60187 CVECAN ID: CVE-2013-2051 Apache Tomcat是一个流行的开源JSP应用服务器程序。 Apache Tomcat 7.0.0 - 7.0.30、6.0.0 - 6.0.36、5.5.0 - 5.5.36的DIGEST验证存在重放攻击漏洞,此漏洞源于CVE-2012-5887的不完整修复,可导致绕过某些安全限制,执行未授权操作。 0 Apache Group Tomcat 7.0.0 - 7.0.30 Apache Group Tomcat 6.0.0 - 6.0.36 Apache Group Tomcat 5.5.0 -...
CentOS 6 : tomcat6 (CESA-2013:0869)
Updated tomcat6 packages that fix two security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
RHEL 6 : tomcat6 (RHSA-2013:0869)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2013:0869 advisory. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. A flaw was found in the way the tomcat6 ini...
Important: Red Hat Security Advisory: tomcat6 security update
Updated tomcat6 packages that fix two security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...