17 matches found
RHEL 5 : tomcat6 (RHSA-2011:0348)
The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2011:0348 advisory. - JDK Double.parseDouble Denial-Of-Service CVE-2010-4476 - tomcat: remote DoS via NIO connector CVE-2011-0534 Note that Nessus has not teste...
openSUSE Security Update : tomcat6 (openSUSE-SU-2011:0146-1)
This tomcat6 update fixes : - CVE-2010-3718: CVSS v2 Base Score: 4.0 AV:N/AC:H/Au:N/C:P/I:P/A:N: Design Error CWE-DesignError - CVE-2011-0013: CVSS v2 Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N: XSS CWE-79 - CVE-2011-0534: CVSS v2 Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P: Resource Management...
Gentoo Security Advisory GLSA 201206-24 (apache tomcat)
The remote host is missing updates announced in advisory GLSA 201206-24. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Scientific Linux Security Update : tomcat6 on SL6.x i386/x86_64
A denial of service flaw was found in the way certain strings were converted to Double objects. A remote attacker could use this flaw to cause Tomcat to hang via a specially crafted HTTP request. CVE-2010-4476 A flaw was found in the Tomcat NIO Non-Blocking I/O connector. A remote attacker could...
Fedora 14 : tomcat6-6.0.26-27.fc14 (2011-13457)
Fixes for: CVE-2011-3190 - authentication bypass and information disclosure CVE-2011-2526 - send file validation CVE-2011-2204 - password disclosure vulnerability JAVAHOME setting in tomcat6.conf CVE-2011-0534, CVE-2011-0013, CVE-2010-3718 Note that Tenable Network Security has extracted the...
Fedora Update for tomcat6 FEDORA-2011-13457
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Mac OS X v10.6.8 Multiple Vulnerabilities (2011-006)
This host is missing an important security update according to Mac OS X 10.6.8 Update/Mac OS X Security Update 2011-006. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
tomcat6 security and bug fix update
6.0.24-33 - resolves: rhbz 695284 - multiple instances logging fiasco 6.0.24-32 - Resolves: rhbz 698624 - inet4address can't be cast to String 6.0.24-31 - Resolves: rhbz 656403 - cve-2010-4172 jsp syntax error 6.0.24-30 - Resolves: rhbz697504 initscript logging location 6.0.24-29 - Resolves:...
openSUSE Security Update : tomcat6 (openSUSE-SU-2011:0146-1)
This tomcat6 update fixes : - CVE-2010-3718: CVSS v2 Base Score: 4.0 AV:N/AC:H/Au:N/C:P/I:P/A:N: Design Error CWE-DesignError - CVE-2011-0013: CVSS v2 Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N: XSS CWE-79 - CVE-2011-0534: CVSS v2 Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P: Resource Management...
Ubuntu: Security Advisory (USN-1097-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Important: Red Hat Security Advisory: tomcat5 and tomcat6 security update
A patch for JBoss Enterprise Web Server 1.0.1 that fixes two security issues is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detail...
tomcat6 security and bug fix update
0:6.0.24-24 - Resolves: rhbz674601 - Removed wildcard in main %files that caused duplicate ownership - of log4j.properties 0:6.0.24-23 - Resolves: rhbz674601 - Reverse - tomcat user requires login shell - Reverse - rhbz 611244 tomcat-juli missing symlink - PM/QE decision to include only the...
Debian: Security Advisory (DSA-2160-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SuSE 10 Security Update : Tomcat (ZYPP Patch Number 7337)
This tomcat6 update fixes : - CVE-2010-3718: CVSS v2 Base Score: 4.0 AV:N/AC:H/Au:N/C:P/I:P/A:N: Design Error CWE-DesignError - CVE-2011-0013: CVSS v2 Base Score: 4.3 AV:N/AC:M/Au:N/C:N/I:P/A:N: XSS CWE-79 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is...
Apache Tomcat 7.0.0 < 7.0.8
The version of Tomcat installed on the remote host is prior to 7.0.8. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat7.0.8security-7 advisory. - Apache Tomcat 7.0.0 through 7.0.6 and 6.0.0 through 6.0.30 does not enforce the maxHttpHeaderSize limit for...
[SECURITY] [DSA 2160-1] tomcat6 security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2160-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 13, 2011 http://www.debian.org/security/faq -...
DSA-2160-1 tomcat6 - several
Bulletin has no description...