Lucene search
K

5 matches found

OpenVAS
OpenVAS
added 2012/08/10 12:0 a.m.266 views

Gentoo Security Advisory GLSA 201206-24 (apache tomcat)

The remote host is missing updates announced in advisory GLSA 201206-24. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

7.5CVSS0.1AI score0.9444EPSS
Exploits33
Cvelist
Cvelist
added 2011/04/08 3:0 p.m.26 views

CVE-2011-1475

The HTTP BIO connector in Apache Tomcat 7.0.x before 7.0.12 does not properly handle HTTP pipelining, which allows remote attackers to read responses intended for other clients in opportunistic circumstances by examining the application data in HTTP packets, related to "a mix-up of responses for...

4.1AI score0.0869EPSS
Exploits0References12
CVE
CVE
added 2011/04/08 3:0 p.m.85 views

CVE-2011-1475

CVE-2011-1475 affects Apache Tomcat 7.0.x prior to 7.0.12. The HTTP BIO connector mishandles HTTP pipelining, allowing remote attackers to read responses intended for other clients by examining HTTP packet data, due to a mix-up of responses for requests from different users. Impact is information...

5CVSS4.1AI score0.0869EPSS
Exploits0References12Affected Software1
Tenable Nessus
Tenable Nessus
added 2011/04/07 12:0 a.m.34 views

Apache Tomcat 7.0.x < 7.0.12 Multiple Vulnerabilities

Binary data 5882.pasl...

5.8CVSS4.9AI score0.06156EPSS
Exploits0References2
Apache Tomcat
Apache Tomcat
added 2011/04/06 12:0 a.m.44 views

Fixed in Apache Tomcat 7.0.12

Important: Information disclosure CVE-2011-1475 Changes introduced to the HTTP BIO connector to support Servlet 3.0 asynchronous requests did not fully account for HTTP pipelining. As a result, when using HTTP pipelining a range of unexpected behaviours occurred including the mixing up of respons...

5.8CVSS5.3AI score0.0869EPSS
Exploits0Affected Software1
Rows per page
Query Builder