Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.36 views

Oracle Linux 5 : tomcat (ELSA-2008-0648)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0648 advisory. - add patch for CVE-2008-1232 Resolves: rhbz457727 - add patch for CVE-2008-1947 Resolves: rhbz449916 - add patch for CVE-2008-2370 Resolves: rhbz45863...

5CVSS6.3AI score0.99708EPSS
Exploits27References5
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.65 views

Scientific Linux Security Update : tomcat on SL5.x i386/x86_64

A cross-site scripting vulnerability was discovered in the HttpServletResponse.sendError method. A remote attacker could inject arbitrary web script or HTML via forged HTTP headers. CVE-2008-1232 An additional cross-site scripting vulnerability was discovered in the host manager application. A...

5CVSS6.1AI score0.99708EPSS
Exploits27References5
Tenable Nessus
Tenable Nessus
added 2010/01/10 12:0 a.m.52 views

RHEL 4 : tomcat in Satellite Server (RHSA-2008:1007)

Updated tomcat packages that fix multiple security issues are now available for Red Hat Network Satellite Server. This update has been rated as having low security impact by the Red Hat Security Response Team. This update corrects several security vulnerabilities in the Tomcat component shipped a...

5CVSS6.1AI score0.99708EPSS
Exploits29References12
OpenVAS
OpenVAS
added 2009/10/13 12:0 a.m.43 views

SLES10: Security update for Websphere Community Edition

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: websphere-asce More details may also be found by searching for the SuSE Enterprise Server 10 patch database linked in the references. SPDX-FileCopyrightText:...

7.5CVSS5.5AI score0.99708EPSS
Exploits39References1
VMware
VMware
added 2009/02/23 12:0 a.m.40 views

VirtualCenter Update 4 and ESX patch update Tomcat to version 5.5.27

a. Update for VirtualCenter and ESX patch update Apache Tomcat version to 5.5.27Update for VirtualCenter and ESX patch update the Tomcat package to version 5.5.27 which addresses multiple security issues that existed in the previous version of Apache Tomcat. The Common Vulnerabilities and Exposur...

5CVSS3AI score0.75865EPSS
Exploits5References4Affected Software3
OpenVAS
OpenVAS
added 2009/02/17 12:0 a.m.29 views

Fedora Update for tomcat5 FEDORA-2008-8113

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS7.7AI score0.99708EPSS
Exploits27References2
RedHat Linux
RedHat Linux
added 2008/12/08 9:2 a.m.61 views

Low: Red Hat Security Advisory: tomcat security update for Red Hat Network Satellite Server

Updated tomcat packages that fix multiple security issues are now available for Red Hat Network Satellite Server. This update has been rated as having low security impact by the Red Hat Security Response Team. This update corrects several security vulnerabilities in the Tomcat component shipped a...

5CVSS6.6AI score0.99708EPSS
Exploits29References7
Apache Tomcat
Apache Tomcat
added 2008/09/08 12:0 a.m.55 views

Fixed in Apache Tomcat 5.5.27

Low: Cross-site scripting CVE-2008-1232 The message argument of HttpServletResponse.sendError call is not only displayed on the error page, but is also used for the reason-phrase of HTTP response. This may include characters that are illegal in HTTP headers. It is possible for a specially crafted...

5CVSS7.5AI score0.75865EPSS
Exploits5Affected Software1
F5 Networks
F5 Networks
added 2008/09/01 12:0 a.m.46 views

SOL9109 - Apache Tomcat cross-site scripting vulnerability CVE-2008-1947

Cross-site scripting XSS vulnerability in Apache Tomcat 5.5.9 through 5.5.26 and 6.0.0 through 6.0.16 allows remote attackers to inject arbitrary web script or HTML through the name parameter the hostname attribute to host-manager/html/add. Information about this advisory is available at the...

4.3CVSS6.6AI score0.09776EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2008/08/27 5:13 p.m.54 views

Important: Red Hat Security Advisory: tomcat security update

Updated tomcat packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP...

5CVSS6.6AI score0.99708EPSS
Exploits27References5
Oracle linux
Oracle linux
added 2008/08/27 12:0 a.m.54 views

tomcat security update

5.5.23-0jpp.7.el52.1 - add patch for CVE-2008-1232 Resolves: rhbz457727 - add patch for CVE-2008-1947 Resolves: rhbz449916 - add patch for CVE-2008-2370 Resolves: rhbz458634 - add patch for CVE-2008-2938 Resolves: rhbz456214...

5CVSS2.1AI score0.99708EPSS
Exploits27
Tenable Nessus
Tenable Nessus
added 2008/06/16 12:0 a.m.37 views

Debian DSA-1593-1 : tomcat5.5 - missing input sanitising

It was discovered that the Host Manager web application performed insufficient input sanitising, which could lead to cross-site scripting. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory...

4.3CVSS5.5AI score0.09776EPSS
Exploits2References2
Debian
Debian
added 2008/06/09 7:38 p.m.28 views

[SECURITY] [DSA 1593-1] New tomcat5.5 packages cross-site scripting

------------------------------------------------------------------------ Debian Security Advisory DSA-1593-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff June 09, 2008 http://www.debian.org/security/faq -...

4.3CVSS7.5AI score0.09776EPSS
Exploits2
CVE
CVE
added 2008/06/04 7:17 p.m.119 views

CVE-2008-1947

CVE-2008-1947 is an XSS vulnerability in Apache Tomcat, affecting 5.5.9–5.5.26 and 6.0.0–6.0.16. It allows remote attackers to inject arbitrary web script or HTML via the name parameter (the hostname attribute) to host-manager/html/add. The connected documents confirm the affected product/version...

4.3CVSS6.6AI score0.09776EPSS
Exploits2References52Affected Software1
Rows per page
Query Builder