Lucene search
K

11 matches found

OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.58 views

Oracle: Security Advisory (ELSA-2010-0580)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.4CVSS6.7AI score0.54779EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.45 views

Oracle Linux 5 : tomcat5 (ELSA-2010-0580)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2010-0580 advisory. - Resolves: CVE-2009-2693, CVE-2009-2902, CVE-2010-2227 Tenable has extracted the preceding description block directly from the Oracle Linux security...

6.4CVSS5.8AI score0.54779EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2012/08/10 12:0 a.m.266 views

Gentoo Security Advisory GLSA 201206-24 (apache tomcat)

The remote host is missing updates announced in advisory GLSA 201206-24. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.5CVSS0.1AI score0.9444EPSS
Exploits33
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.279 views

Scientific Linux Security Update : tomcat5 on SL5.x i386/x86_64

A flaw was found in the way Tomcat handled the Transfer-Encoding header in HTTP requests. A specially crafted HTTP request could prevent Tomcat from sending replies, or cause Tomcat to return truncated replies, or replies containing data related to the requests of other users, for all subsequent...

6.4CVSS5.6AI score0.54779EPSS
Exploits3References6
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.69 views

CentOS Update for tomcat5 CESA-2010:0580 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.4CVSS5.5AI score0.54779EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2010/08/03 12:0 a.m.59 views

CentOS 5 : tomcat5 (CESA-2010:0580)

Updated tomcat5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, ar...

6.4CVSS5.8AI score0.54779EPSS
Exploits3References7
securityvulns
securityvulns
added 2010/05/20 12:0 a.m.90 views

[security bulletin] HPSBMA02535 SSRT100029 rev.1 - HP Performance Manager, Remote Unauthorized Access, Cross Site Scripting (XSS), Denial of Service (DoS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02181353 Version: 1 HPSBMA02535 SSRT100029 rev.1 - HP Performance Manager, Remote Unauthorized Access, Cross Site Scripting XSS, Denial of Service DoS NOTICE: The information in this Security...

7.5CVSS0.3AI score0.9444EPSS
Exploits18
Apache Tomcat
Apache Tomcat
added 2010/04/20 12:0 a.m.53 views

Fixed in Apache Tomcat 5.5.29

Low: Arbitrary file deletion and/or alteration on deploy CVE-2009-2693 When deploying WAR files, the WAR files were not checked for directory traversal attempts. This allows an attacker to create arbitrary content outside of the web root by including entries such as ../../bin/catalina.sh in the...

7.5CVSS5.9AI score0.78995EPSS
Exploits10Affected Software1
Tenable Nessus
Tenable Nessus
added 2010/04/09 12:0 a.m.32 views

openSUSE Security Update : tomcat6 (tomcat6-2000)

This update of tomcat5/6 fixes : - CVE-2009-2693: CVSS v2 Base Score: 5.8 CVE-2009-2902: CVSS v2 Base Score: 4.3 Directory traversal vulnerability allowed remote attackers to create or overwrite arbitrary files/dirs with a specially crafted WAR file. - CVE-2009-2901: CVSS v2 Base Score: 4.3 When...

5.8CVSS5.8AI score0.18685EPSS
Exploits1References5
CVE
CVE
added 2010/01/28 8:0 p.m.115 views

CVE-2009-2902

CVE-2009-2902 is a directory traversal vulnerability in Apache Tomcat, affecting 5.5.0–5.5.28 and 6.0.0–6.0.20. The issue allows remote attackers to delete work-directory files via directory traversal sequences in a WAR filename (e.g., a crafted entry like ../../... in a WAR). The connected Nessu...

4.3CVSS5AI score0.1078EPSS
Exploits0References47Affected Software1
Tenable Nessus
Tenable Nessus
added 2009/01/25 12:0 a.m.42 views

Apache Tomcat < 5.5.29 / 6.0.24

Binary data 800619.prm...

5.8CVSS7.2AI score0.1078EPSS
Exploits0References5
Rows per page
Query Builder