Test Kennung:	1.3.6.1.4.1.25623.1.0.100712
Kategorie:	Web Servers
Titel:	Apache Tomcat 'Transfer-Encoding' Information Disclosure and Denial Of Service Vulnerabilities
Zusammenfassung:	Apache Tomcat is prone to multiple remote vulnerabilities including; information-disclosure and denial-of-service issues.
Beschreibung:	Summary: Apache Tomcat is prone to multiple remote vulnerabilities including information-disclosure and denial-of-service issues. Vulnerability Impact: Remote attackers can exploit these issues to cause denial-of-service conditions or gain access to potentially sensitive information, information obtained may lead to further attacks. Affected Software/OS: Tomcat 5.5.0 to 5.5.29 Tomcat 6.0.0 to 6.0.27 Tomcat 7.0.0 Tomcat 3.x, 4.x, and 5.0.x may also be affected. Solution: The vendor released updates. Please see the references for more information. CVSS Score: 6.4 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2227 http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html BugTraq ID: 41544 http://www.securityfocus.com/bid/41544 Bugtraq: 20100709 [SECURITY] CVE-2010-2227: Apache Tomcat Remote Denial Of Service and Information Disclosure Vulnerability (Google Search) http://www.securityfocus.com/archive/1/512272/100/0/threaded Bugtraq: 20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX (Google Search) http://www.securityfocus.com/archive/1/516397/100/0/threaded Debian Security Information: DSA-2207 (Google Search) http://www.debian.org/security/2011/dsa-2207 http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050207.html http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050214.html HPdes Security Advisory: HPSBST02955 http://marc.info/?l=bugtraq&m=139344343412337&w=2 HPdes Security Advisory: HPSBUX02579 http://marc.info/?l=bugtraq&m=129070310906557&w=2 HPdes Security Advisory: HPSBUX02860 http://marc.info/?l=bugtraq&m=136485229118404&w=2 HPdes Security Advisory: SSRT100203 HPdes Security Advisory: SSRT101146 http://www.mandriva.com/security/advisories?name=MDVSA-2010:176 http://www.mandriva.com/security/advisories?name=MDVSA-2010:177 https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18532 http://www.redhat.com/support/errata/RHSA-2010-0580.html http://www.redhat.com/support/errata/RHSA-2010-0581.html http://www.redhat.com/support/errata/RHSA-2010-0582.html http://www.redhat.com/support/errata/RHSA-2010-0583.html http://securitytracker.com/id?1024180 http://secunia.com/advisories/40813 http://secunia.com/advisories/41025 http://secunia.com/advisories/42079 http://secunia.com/advisories/42368 http://secunia.com/advisories/42454 http://secunia.com/advisories/43310 http://secunia.com/advisories/44183 http://secunia.com/advisories/57126 SuSE Security Announcement: SUSE-SR:2010:017 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html http://www.vupen.com/english/advisories/2010/1986 http://www.vupen.com/english/advisories/2010/2868 http://www.vupen.com/english/advisories/2010/3056 XForce ISS Database: tomcat-transferencoding-dos(60264) https://exchange.xforce.ibmcloud.com/vulnerabilities/60264
Copyright	Copyright (C) 2010 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.