Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vmwareVMwareVMSA-2009-0002.2
HistoryFeb 23, 2009 - 12:00 a.m.

VirtualCenter Update 4 and ESX patch update Tomcat to version 5.5.27

2009-02-2300:00:00
www.vmware.com
17

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.118 Low

EPSS

Percentile

95.2%

JSON

a. Update for VirtualCenter and ESX patch update Apache Tomcat version to 5.5.27Update for VirtualCenter and ESX patch update the Tomcat package to version 5.5.27 which addresses multiple security issues that existed in the previous version of Apache Tomcat. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2008-1232, CVE-2008-1947 and CVE-2008-2370 to these issues. The following table lists what action remediates the vulnerability (column 4) if a solution is available.

Related

tomcat 3
nessus 21
vmware 3
openvas 25
redhat 5
centos 1
fedora 3
oraclelinux 1
securityvulns 9
seebug 2
osv 6
ubuntucve 4
f5 7
veracode 3
packetstorm 1
github 5
prion 5
debian 1
cve 5
atlassian 2
ibm 1
tomcat
tomcat
Fixed in Apache Tomcat 6.0.18
2008-07-31 00:00:00
Fixed in Apache Tomcat 5.5.27
2008-09-08 00:00:00
Fixed in Apache Tomcat 4.1.39
2008-01-07 00:00:00
nessus
nessus
VMSA-2009-0002 : VirtualCenter Update 4 and ESX patch update Tomcat to version 5.5.27
2009-10-19 00:00:00
Apache Tomcat < 6.0.18 Multiple Vulnerabilities
2010-07-01 00:00:00
Scientific Linux Security Update : tomcat on SL5.x i386/x86_64
2012-08-01 00:00:00
vmware
vmware
VirtualCenter Update 4 and ESX patch update Tomcat to version 5.5.27
2009-02-23 00:00:00
VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components
2009-11-20 00:00:00
VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components.
2009-11-20 00:00:00
openvas
openvas
RedHat Update for tomcat RHSA-2008:0648-01
2009-03-06 00:00:00
Fedora Update for tomcat6 FEDORA-2008-7977
2009-02-17 00:00:00
Fedora Update for tomcat6 FEDORA-2008-7977
2009-02-17 00:00:00
redhat
redhat
(RHSA-2008:0648) Important: tomcat security update
2008-08-27 00:00:00
(RHSA-2008:0864) Important: tomcat security update
2008-10-02 00:00:00
(RHSA-2008:1007) Low: tomcat security update for Red Hat Network Satellite Server
2008-12-08 00:00:00
centos
centos
tomcat5 security update
2008-08-28 22:01:41
fedora
fedora
[SECURITY] Fedora 9 Update: tomcat5-5.5.27-0jpp.2.fc9
2008-09-16 23:25:10
[SECURITY] Fedora 9 Update: tomcat6-6.0.18-1.1.fc9
2008-09-11 17:17:43
[SECURITY] Fedora 8 Update: tomcat5-5.5.27-0jpp.2.fc8
2008-09-16 23:28:35
oraclelinux
oraclelinux
tomcat security update
2008-08-27 00:00:00
securityvulns
securityvulns
Apache Tomcat multiple security vulnerabilities
2009-01-28 00:00:00
[CVE-2008-1232] Apache Tomcat XSS vulnerability
2008-08-01 00:00:00
Apache Tomcat crossite scripting
2010-02-25 00:00:00
seebug
seebug
Apache Tomcat HttpServletResponse.sendError()่ทจ็ซ™่„šๆœฌๆผๆดž
2008-08-04 00:00:00
Apache Tomcatไธปๆœบ็ฎก็†ๅ™จ่ทจ็ซ™่„šๆœฌๆผๆดž
2008-06-05 00:00:00
osv
osv
Apache Tomcat Cross-site scripting (XSS) vulnerability
2022-05-01 23:37:49
Apache Tomcat Path Traversal Vulnerability
2022-05-01 23:49:31
Apache Tomcat Cross-site scripting (XSS) vulnerability
2022-05-01 23:45:13
ubuntucve
ubuntucve
CVE-2008-1232
2008-08-04 00:00:00
CVE-2008-2370
2008-08-04 00:00:00
CVE-2008-1947
2008-06-04 00:00:00
f5
f5
SOL9110 - Apache Tomcat information disclosure vulnerability - CVE-2008-2370
2008-09-01 00:00:00
K9109 : Apache Tomcat cross-site scripting vulnerability CVE-2008-1947
2013-03-19 00:00:00
SOL9108 - Apache Tomcat Cross-site scripting (XSS) vulnerability - CVE-2008-1232
2008-09-01 00:00:00
veracode
veracode
Directory Traversal
2018-11-09 07:23:15
Cross-site Scripting (XSS)
2018-11-09 07:06:07
Cross-site Scripting (XSS)
2018-11-09 06:35:59
packetstorm
packetstorm
CVE-2008-1947.txt
2008-06-03 00:00:00
github
github
Apache Tomcat Cross-site scripting (XSS) vulnerability
2022-05-01 23:45:13
Apache Tomcat Cross-site scripting (XSS) vulnerability
2022-05-01 23:37:49
Apache Tomcat Path Traversal Vulnerability
2022-05-01 23:49:31
prion
prion
Cross site scripting
2008-08-04 01:41:00
Cross site scripting
2008-06-04 19:32:00
Directory traversal
2008-08-04 01:41:00
debian
debian
[SECURITY] [DSA 1593-1] New tomcat5.5 packages cross-site scripting
2008-06-09 19:38:32
cve
cve
CVE-2008-1232
2008-08-04 01:41:00
CVE-2008-1947
2008-06-04 19:32:00
CVE-2008-2370
2008-08-04 01:41:00
atlassian
atlassian
Upgrade standalone Tomcat to 5.5.25
2008-01-15 04:23:59
Upgrade standalone Tomcat to 5.5.25
2008-01-15 04:23:59
ibm
ibm
Security Bulletin: TADDM affected by multiple vulnerabilities due to Apache Tomcat libraries
2023-01-27 10:54:22

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.118 Low

EPSS

Percentile

95.2%

JSON
Related for VMSA-2009-0002.2
tomcat3nessus21vmware3openvas25redhat5centos1fedora3oraclelinux1securityvulns9seebug2osv6ubuntucve4f57veracode3packetstorm1github5prion5debian1cve5atlassian2ibm1