Lucene search
K

75 matches found

Tenable Nessus
Tenable Nessus
added 2010/01/06 12:0 a.m.55 views

CentOS 5 : tomcat (CESA-2008:0042)

Updated tomcat packages that fix security issues and bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Tomcat is a servlet container for Java Servlet and JavaServer Pages technologies. A...

6.4CVSS5.8AI score0.39681EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2008/09/22 1:27 p.m.48 views

Low: Red Hat Security Advisory: JBoss Enterprise Application Platform 4.3.0CP02 security update

Updated JBoss Enterprise Application Platform JBEAP 4.3 packages that fix various security issues are now available for Red Hat Enterprise Linux 5 as JBEAP 4.3.0.CP02. This update has been rated as having low security impact by the Red Hat Security Response Team. JBoss Enterprise Application...

6.4CVSS6.2AI score0.05156EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2008/03/13 12:0 a.m.48 views

RHEL 5 : tomcat (RHSA-2008:0042)

Updated tomcat packages that fix security issues and bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Tomcat is a servlet container for Java Servlet and JavaServer Pages technologies. A...

6.4CVSS5.8AI score0.39681EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2008/03/11 10:51 a.m.43 views

Moderate: Red Hat Security Advisory: tomcat security update

Updated tomcat packages that fix security issues and bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Tomcat is a servlet container for Java Servlet and JavaServer Pages technologies. A...

6.4CVSS6.2AI score0.39681EPSS
Exploits3References3
Apache Tomcat
Apache Tomcat
added 2008/02/05 12:0 a.m.77 views

Fixed in Apache Tomcat 5.5.26

Low: Session hi-jacking CVE-2007-5333 The previous fix for CVE-2007-3385 was incomplete. It did not consider the use of quotes or %5C within a cookie value. Affects: 5.5.0-5.5.25 Low: Elevated privileges CVE-2007-5342 The JULI logging component allows web applications to provide their own logging...

6.4CVSS4.8AI score0.62575EPSS
Exploits9Affected Software1
Tenable Nessus
Tenable Nessus
added 2008/01/07 12:0 a.m.42 views

Debian DSA-1447-1 : tomcat5.5 - several vulnerabilities

Several remote vulnerabilities have been discovered in the Tomcat servlet and JSP engine. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2007-3382 It was discovered that single quotes ' in cookies were treated as a delimiter, which could lead to an...

6.4CVSS5.2AI score0.58956EPSS
Exploits9References11
UbuntuCve
UbuntuCve
added 2007/12/27 10:46 p.m.40 views

CVE-2007-5342

The default catalina.policy in the JULI logging component in Apache Tomcat 5.5.9 through 5.5.25 and 6.0.0 through 6.0.15 does not restrict certain permissions for web applications, which allows attackers to modify logging configuration options and overwrite arbitrary files, as demonstrated by...

6.4CVSS6.3AI score0.05156EPSS
Exploits1References1
CVE
CVE
added 2007/12/27 10:0 p.m.109 views

CVE-2007-5342

CVE-2007-5342 affects Apache Tomcat versions 5.5.9–5.5.25 and 6.0.0–6.0.15 where the default catalina.policy for the JULI logging component fails to restrict permissions for web applications. The underly­ing issue is that untrusted web apps can modify logging configuration options and overwrite a...

6.4CVSS7.4AI score0.05156EPSS
Exploits1References50Affected Software1
Cvelist
Cvelist
added 2005/08/18 4:0 a.m.25 views

CVE-2004-2416

Buffer overflow in the logging component of CCProxy allows remote attackers to execute arbitrary code via a long HTTP GET request...

7.7AI score0.60587EPSS
Exploits8References6
Tenable Nessus
Tenable Nessus
added 2004/08/18 12:0 a.m.15 views

Sun Java Calendar Logging Component Unspecified Remote DoS

Binary data 4553.prm...

7.1CVSS7.3AI score0.0245EPSS
Exploits0References2
NVD
NVD
added 2002/08/12 4:0 a.m.15 views

CVE-2002-0796

Format string vulnerability in the logging component of snmpdx for Solaris 5.6 through 8 allows remote attackers to gain root privileges...

10CVSS7AI score0.04402EPSS
Exploits0References6
Cvelist
Cvelist
added 2002/07/26 4:0 a.m.24 views

CVE-2002-0796

Format string vulnerability in the logging component of snmpdx for Solaris 5.6 through 8 allows remote attackers to gain root privileges...

7AI score0.04402EPSS
Exploits0References6
securityvulns
securityvulns
added 2002/06/13 12:0 a.m.33 views

Format string bugs in mmmail/mmftpd

Format string bugs in logging...

1.5AI score
Exploits0References2Affected Software2
exploitpack
exploitpack
added 2001/02/22 12:0 a.m.17 views

Sudo 1.51.6 - Heap Corruption

Sudo 1.51.6 - Heap Corruption // source: https://www.securityfocus.com/bid/2829/info Sudo superuser do is a security utility that allows administrator to give 'restricted' superuser privileges to certain users. Sudo contains a locally exploitable buffer overrun vulnerability. The overrun conditio...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2001/02/22 12:0 a.m.26 views

Sudo 1.5/1.6 - Heap Corruption

// source: https://www.securityfocus.com/bid/2829/info Sudo superuser do is a security utility that allows administrator to give 'restricted' superuser privileges to certain users. Sudo contains a locally exploitable buffer overrun vulnerability. The overrun condition exists in the logging...

7.4AI score
Exploits0
Rows per page
Query Builder