ID de Prueba:	1.3.6.1.4.1.25623.1.0.70648
Categoría:	CentOS Local Security Checks
Título:	CentOS Security Advisory CESA-2011:1845 (tomcat5)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates to tomcat5 announced in advisory CESA-2011:1845. For details on the issues addressed in this update, please visit the referenced security advisories. Solution: Update the appropriate packages on your system. http://www.securityspace.com/smysecure/catid.html?in=CESA-2011:1845 http://www.securityspace.com/smysecure/catid.html?in=RHSA-2011:1845 https://rhn.redhat.com/errata/RHSA-2011-1845.html Risk factor : Medium
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3718 1025025 http://www.securitytracker.com/id?1025025 20110205 [SECURITY] CVE-2010-3718 Apache Tomcat Local bypass of security manger file permissions http://www.securityfocus.com/archive/1/516211/100/0/threaded 43192 http://secunia.com/advisories/43192 45022 http://secunia.com/advisories/45022 46177 http://www.securityfocus.com/bid/46177 57126 http://secunia.com/advisories/57126 8072 http://securityreason.com/securityalert/8072 APPLE-SA-2011-10-12-3 http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html DSA-2160 http://www.debian.org/security/2011/dsa-2160 HPSBST02955 http://marc.info/?l=bugtraq&m=139344343412337&w=2 HPSBUX02645 http://marc.info/?l=bugtraq&m=130168502603566&w=2 HPSBUX02725 http://marc.info/?l=bugtraq&m=132215163318824&w=2 HPSBUX02860 http://marc.info/?l=bugtraq&m=136485229118404&w=2 MDVSA-2011:030 http://www.mandriva.com/security/advisories?name=MDVSA-2011:030 RHSA-2011:0791 http://www.redhat.com/support/errata/RHSA-2011-0791.html RHSA-2011:0896 http://www.redhat.com/support/errata/RHSA-2011-0896.html RHSA-2011:0897 http://www.redhat.com/support/errata/RHSA-2011-0897.html RHSA-2011:1845 http://www.redhat.com/support/errata/RHSA-2011-1845.html SSRT100627 SSRT101146 SUSE-SR:2011:005 http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html [tomcat-dev] 20190319 svn commit: r1855831 [22/30] - in /tomcat/site/trunk: ./ docs/ xdocs/ https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E [tomcat-dev] 20190325 svn commit: r1856174 [20/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/ https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E [tomcat-dev] 20200203 svn commit: r1873527 [22/30] - /tomcat/site/trunk/docs/ https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E [tomcat-dev] 20200213 svn commit: r1873980 [25/34] - /tomcat/site/trunk/docs/ https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E http://support.apple.com/kb/HT5002 http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5098550.html http://tomcat.apache.org/security-5.html http://tomcat.apache.org/security-6.html http://tomcat.apache.org/security-7.html oval:org.mitre.oval:def:12517 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12517 oval:org.mitre.oval:def:13969 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13969 oval:org.mitre.oval:def:19379 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19379 tomcat-servletcontect-sec-bypass(65159) https://exchange.xforce.ibmcloud.com/vulnerabilities/65159 Common Vulnerability Exposure (CVE) ID: CVE-2011-0013 1025026 http://www.securitytracker.com/id?1025026 20110205 [SECURITY] CVE-2011-0013 Apache Tomcat Manager XSS vulnerability http://www.securityfocus.com/archive/1/516209/30/90/threaded 46174 http://www.securityfocus.com/bid/46174 8093 http://securityreason.com/securityalert/8093 ADV-2011-0376 http://www.vupen.com/english/advisories/2011/0376 http://tomcat.apache.org/security-5.html#Fixed_in_Apache_Tomcat_5.5.32 http://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.30 http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.6_%28released_14_Jan_2011%29 https://bugzilla.redhat.com/show_bug.cgi?id=675786 oval:org.mitre.oval:def:12878 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12878 oval:org.mitre.oval:def:14945 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14945 oval:org.mitre.oval:def:19269 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19269 Common Vulnerability Exposure (CVE) ID: CVE-2011-1184 DSA-2401 http://www.debian.org/security/2012/dsa-2401 HPSBOV02762 http://marc.info/?l=bugtraq&m=133469267822771&w=2 MDVSA-2011:156 http://www.mandriva.com/security/advisories?name=MDVSA-2011:156 RHSA-2012:0074 http://rhn.redhat.com/errata/RHSA-2012-0074.html RHSA-2012:0075 http://rhn.redhat.com/errata/RHSA-2012-0075.html RHSA-2012:0076 http://rhn.redhat.com/errata/RHSA-2012-0076.html RHSA-2012:0077 http://rhn.redhat.com/errata/RHSA-2012-0077.html RHSA-2012:0078 http://rhn.redhat.com/errata/RHSA-2012-0078.html RHSA-2012:0325 http://rhn.redhat.com/errata/RHSA-2012-0325.html SSRT100825 SUSE-SU-2012:0155 http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00002.html http://svn.apache.org/viewvc?view=rev&rev=1087655 http://svn.apache.org/viewvc?view=rev&rev=1158180 http://svn.apache.org/viewvc?view=rev&rev=1159309 openSUSE-SU-2012:0208 http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00006.html oval:org.mitre.oval:def:19169 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19169 Common Vulnerability Exposure (CVE) ID: CVE-2011-2204 http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html BugTraq ID: 48456 http://www.securityfocus.com/bid/48456 Debian Security Information: DSA-2401 (Google Search) HPdes Security Advisory: HPSBOV02762 HPdes Security Advisory: HPSBST02955 HPdes Security Advisory: HPSBUX02725 HPdes Security Advisory: HPSBUX02860 HPdes Security Advisory: SSRT100627 HPdes Security Advisory: SSRT100825 HPdes Security Advisory: SSRT101146 https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E http://www.osvdb.org/73429 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14931 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19532 http://securitytracker.com/id?1025712 http://secunia.com/advisories/44981 http://secunia.com/advisories/48308 XForce ISS Database: tomcat-jmx-info-disclosure(68238) https://exchange.xforce.ibmcloud.com/vulnerabilities/68238
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.