Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2008/06/30 3:33 p.m.5 views

tomcat accept-language xss flaw

Cross-site scripting XSS vulnerability in certain applications using Apache Tomcat 4.0.0 through 4.0.6 and 4.1.0 through 4.1.34 allows remote attackers to inject arbitrary web script or HTML via crafted "Accept-Language headers that do not conform to RFC 2616"...

2.6CVSS5.9AI score0.19889EPSS
Exploits1References4
seebug.org
seebug.org
added 2008/03/29 12:0 a.m.48 views

Apache Tomcat 'allowLinking' URI中接收NULL字节信息泄漏漏洞

Tomcat是一款由Apache软件基金会下属的Jakarta项目开发的一个Servlet容器。 当配置'allowlingk'时Apache Tomcat HTTP/1.0 connector不正确处理URI中的NULL字节,远程攻击者可以利用漏洞获得JSP源代码敏感信息。 目前没有详细漏洞细节提供。 Apache Software Foundation Tomcat 4.1.37 Apache Software Foundation Tomcat 4.1.36 Apache Software Foundation Tomcat 4.1.36 Apache Software...

7AI score
Exploits0
securityvulns
securityvulns
added 2007/06/19 12:0 a.m.103 views

[CVE-2007-1358] Apache Tomcat XSS vulnerability in Accept-Language header processing

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2007-1358: Apache Tomcat XSS vulnerability in Accept-Language header processing Severity: Low cross-site scripting Vendor: The Apache Software Foundation Versions Affected: Tomcat 4.0.0 to 4.0.6 Tomcat 4.1.0 to 4.1.34 Tomcat 5.0.0 to 5.0.30 Tomcat...

2.6CVSS7.9AI score0.19889EPSS
Exploits1
seebug.org
seebug.org
added 2007/03/05 12:0 a.m.55 views

Apache Tomcat JK Web Server Connector超长URL栈溢出漏洞

Apache Tomcat是一个流行的开放源码的JSP应用服务器程序。 Tomcat JK Web Server Connector的modjk.so库在处理超长畸形的URL时存在漏洞,远程攻击者可能利用此漏洞控制服务器。 Apache Tomcat JK Web Server Connector的modjk.so库URI处理器mapuritoworker是在native/common/jkuriworkermap.c文件中定义的。当该库在解析超过4095字节的超长URL请求时URI...

7.1AI score
Exploits0
Rows per page
Query Builder