a. Update for VirtualCenter and ESX patch update Apache Tomcat version to 5.5.27
Update for VirtualCenter and ESX patch update the Tomcat package to version 5.5.27 which addresses multiple security issues that existed in the previous version of Apache Tomcat.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2008-1232, CVE-2008-1947 and CVE-2008-2370 to these issues.
The following table lists what action remediates the vulnerability (column 4) if a solution is available.

tomcat 3

vmware 3

nessus 21

openvas 21

redhat 5

centos 1

fedora 3

oraclelinux 1

securityvulns 9

seebug 2

osv 6

ubuntucve 4

f5 7

packetstorm 1

github 5

veracode 3

cve 5

prion 5

debian 1

atlassian 2

ibm 1

tomcat

Fixed in Apache Tomcat 6.0.18

2008-07-31 00:00:00

Fixed in Apache Tomcat 5.5.27

2008-09-08 00:00:00

Fixed in Apache Tomcat 4.1.39

2008-01-07 00:00:00

vmware

VirtualCenter Update 4 and ESX patch update Tomcat to version 5.5.27

2009-02-23 00:00:00

VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.

2009-11-20 00:00:00

VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components

2009-11-20 00:00:00

nessus

VMSA-2009-0002 : VirtualCenter Update 4 and ESX patch update Tomcat to version 5.5.27

2009-10-19 00:00:00

Apache Tomcat < 6.0.18 Multiple Vulnerabilities

2010-07-01 00:00:00

Scientific Linux Security Update : tomcat on SL5.x i386/x86_64

2012-08-01 00:00:00

openvas

RedHat Update for tomcat RHSA-2008:0648-01

2009-03-06 00:00:00

Fedora Update for tomcat6 FEDORA-2008-7977

2009-02-17 00:00:00

RedHat Update for tomcat RHSA-2008:0648-01

2009-03-06 00:00:00

redhat

(RHSA-2008:0648) Important: tomcat security update

2008-08-27 00:00:00

(RHSA-2008:0864) Important: tomcat security update

2008-10-02 00:00:00

(RHSA-2008:1007) Low: tomcat security update for Red Hat Network Satellite Server

2008-12-08 00:00:00

centos

tomcat5 security update

2008-08-28 22:01:41

fedora

[SECURITY] Fedora 9 Update: tomcat5-5.5.27-0jpp.2.fc9

2008-09-16 23:25:10

[SECURITY] Fedora 9 Update: tomcat6-6.0.18-1.1.fc9

2008-09-11 17:17:43

[SECURITY] Fedora 8 Update: tomcat5-5.5.27-0jpp.2.fc8

2008-09-16 23:28:35

oraclelinux

tomcat security update

2008-08-27 00:00:00

securityvulns

Apache Tomcat multiple security vulnerabilities

2009-01-28 00:00:00

[CVE-2008-1232] Apache Tomcat XSS vulnerability

2008-08-01 00:00:00

CA20100222-01: Security Notice for CA Service Desk

2010-02-25 00:00:00

seebug

Apache Tomcat HttpServletResponse.sendError()跨站脚本漏洞

2008-08-04 00:00:00

Apache Tomcat主机管理器跨站脚本漏洞

2008-06-05 00:00:00

osv

Apache Tomcat Cross-site scripting (XSS) vulnerability

2022-05-01 23:37:49

Apache Tomcat Path Traversal Vulnerability

2022-05-01 23:49:31

Apache Tomcat Cross-site scripting (XSS) vulnerability

2022-05-01 23:45:13

ubuntucve

CVE-2008-1232

2008-08-04 00:00:00

CVE-2008-1947

2008-06-04 00:00:00

CVE-2008-2370

2008-08-04 00:00:00

SOL9110 - Apache Tomcat information disclosure vulnerability - CVE-2008-2370

2008-09-01 00:00:00

K9109 : Apache Tomcat cross-site scripting vulnerability CVE-2008-1947

2013-03-19 00:00:00

K9108 : Apache Tomcat Cross-site scripting (XSS) vulnerability - CVE-2008-1232

2013-03-24 00:00:00

packetstorm

CVE-2008-1947.txt

2008-06-03 00:00:00

github

Apache Tomcat Cross-site scripting (XSS) vulnerability

2022-05-01 23:45:13

Apache Tomcat Cross-site scripting (XSS) vulnerability

2022-05-01 23:37:49

Apache Tomcat Path Traversal Vulnerability

2022-05-01 23:49:31

veracode

Cross-site Scripting (XSS)

2018-11-09 07:06:07

Cross-site Scripting (XSS)

2018-11-09 06:35:59

Directory Traversal

2018-11-09 07:23:15

cve

CVE-2008-1947

2008-06-04 19:32:00

CVE-2008-1232

2008-08-04 01:41:00

CVE-2008-2370

2008-08-04 01:41:00

prion

Cross site scripting

2008-08-04 01:41:00

Directory traversal

2008-08-04 01:41:00

Cross site scripting

2008-06-04 19:32:00

debian

[SECURITY] [DSA 1593-1] New tomcat5.5 packages cross-site scripting

2008-06-09 19:38:32

atlassian

Upgrade standalone Tomcat to 5.5.25

2008-01-15 04:23:59

Upgrade standalone Tomcat to 5.5.25

2008-01-15 04:23:59

ibm

Security Bulletin: TADDM affected by multiple vulnerabilities due to Apache Tomcat libraries

2023-01-27 10:54:22

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

0.216 Low

EPSS

Percentile

95.9%

JSON

Related for VMSA-2009-0002