18 matches found
CVE-2007-0450 vulnerabilities
Vulnerabilities for packages: apache2...
CVE-2007-0450 vulnerabilities
Vulnerabilities for packages: apache2...
Oracle Linux 5 : Important: / tomcat (ELSA-2007-0327)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2007-0327 advisory. jakarta-commons-modeler-1.1-8jpp.1.0.2.el5 1.1-8jpp.1.0.2.el5 - rebuild after the fix for bug 238139 made it into the build root - Resolves: bug 238694...
Scientific Linux Security Update : tomcat on SL5.x i386/x86_64
Some JSPs within the 'examples' web application did not escape user provided data. If the JSP examples were accessible, this flaw could allow a remote attacker to perform cross-site scripting attacks CVE-2007-2449. Note: it is recommended the 'examples' web application not be installed on a...
RHEL 3 / 4 : tomcat in Satellite Server (RHSA-2007:1069)
Updated tomcat packages that fix multiple security issues are now available for Red Hat Network Satellite Server. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Tomcat is a servlet container for Java Servlet and JavaServer Pages technologies. ...
Apache Tomcat URIencoding Directory Traversal (CVE-2007-0450; CVE-2008-2938)
Apache Tomcat is an implementation of the Java Servlet and JavaServer pages technologies. The software provides the servlet container used in development and deployment of Java based web applications. Users access Tomcat applications using web browsers that communicate to the server via the HTTP...
SLES9: Security update for jakarta-tomcat
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: jakarta-tomcat For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5012618 within...
SLES9: Security update for jakarta-tomcat
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: jakarta-tomcat For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5012618 within...
VMSA-2008-0002 : Low severity security update for VirtualCenter and ESX
Updated VirtualCenter fixes the following application vulnerabilities a. Tomcat Server Security Update This release of VirtualCenter Server updates the Tomcat Server package from 5.5.17 to 5.5.25, which addresses multiple security issues that existed in the earlier releases of Tomcat Server. The...
FreeBSD Ports: apache-tomcat
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Moderate: Red Hat Security Advisory: Red Hat Network Satellite Server security update
Red Hat Network Satellite Server version 5.0.2 is now available. This update includes fixes for a number of security issues in Red Hat Network Satellite Server components. This update has been rated as having moderate security impact by the Red Hat Security Response Team. During an internal...
openSUSE 10 Security Update : tomcat5 (tomcat5-3950)
Certain characters of the URL were not properly filtered. This allowed directory reverse traversal attacks to access the web-root of tomcat. CVE-2007-0450 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...
Mac OS X Multiple Vulnerabilities (Security Update 2007-007)
The remote host is running a version of Mac OS X 10.4 or 10.3 which does not have the security update 2007-007 applied. This update contains several security fixes for the following programs : - bzip2 - CFNetwork - CoreAudio - cscope - gnuzip - iChat - Kerberos - mDNSResponder - PDFKit - PHP -...
RHEL 5 : tomcat (RHSA-2007:0327)
Updated tomcat packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Tomcat is a servlet container for Java Servlet and JavaServer Pages technologies. Tomca...
Important: Red Hat Security Advisory: tomcat security update
Updated tomcat packages that fix multiple security issues and a bug are now available for Red Hat Developer Suite 3. This update has been rated as having important security impact by the Red Hat Security Response Team. Tomcat is a servlet container for Java Servlet and JavaServer Pages...
Fixed in Apache Tomcat JK Connector 1.2.23
Important: Information disclosure CVE-2007-1860 The issue is related to CVE-2007-0450, the patch for which was insufficient. When multiple components firewalls, caches, proxies and Tomcat process a request, the request URL should not get decoded multiple times in an iterative way by these...
SA-20070314-0.txt
SEC Consult Security Advisory ======================================================================= title: Apache HTTP Server / Tomcat directory traversal program: Apache HTTP Server / Apache Tomcat vulnerable version: Apache Tomcat 5.x: 5.5.22 Apache Tomcat 6.x: 6.0.10 CVE: CVE-2007-0450 impac...
SEC Consult SA-20070314-0 :: Apache HTTP Server / Tomcat directory traversal
SEC Consult Security Advisory 20070314-0 ======================================================================= title: Apache HTTP Server / Tomcat directory traversal program: Apache HTTP Server / Apache Tomcat vulnerable version: Apache Tomcat 5.x: 5.5.22 Apache Tomcat 6.x: 6.0.10 CVE:...