- Home
- CVEs with nessus.description==Several+remote+vulnerabilities+have+been+discovered+in+the+Tomcat+servlet+and+JSP+engine.+The+Common+Vulnerabilities+and+Exposures+project+identifies+the+following+problems+%3A%0A%0A++-+CVE-2007-3382+++++It+was+discovered+that+single+quotes+%28%27%29+in+cookies+were+++++treated+as+a+delimiter%2C+which+could+lead+to+an+++++information+leak.%0A%0A++-+CVE-2007-3385+++++It+was+discovered+that+the+character+sequence+%5C%27+in+++++cookies+was+handled+incorrectly%2C+which+could+lead+to+an+++++information+leak.%0A%0A++-+CVE-2007-3386+++++It+was+discovered+that+the+host+manager+servlet+++++performed+insufficient+input+validation%2C+which+could+++++lead+to+a+cross-site+scripting+attack.%0A%0A++-+CVE-2007-5342+++++It+was+discovered+that+the+JULI+logging+component+did+++++not+restrict+its+target+path%2C+resulting+in+potential+++++denial+of+service+through+file+overwrites.%0A%0A++-+CVE-2007-5461+++++It+was+discovered+that+the+WebDAV+servlet+is+vulnerable+++++to+absolute+path+traversal
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top