Test ID:	1.3.6.1.4.1.25623.1.0.117257
Category:	Web Servers
Title:	Apache Tomcat <= 5.5.25 CSRF Vulnerability - Windows
Summary:	Apache Tomcat is prone to a cross-site request forgery; (CSRF) vulnerability.
Description:	Summary: Apache Tomcat is prone to a cross-site request forgery (CSRF) vulnerability. Vulnerability Insight: The CSRF vulnerability affecting the Manager application of Apache Tomcat. An attacker can trick an administrator to perform the following activities: - stop an existing application - undeploy an existing application - deploy a new application Affected Software/OS: Apache Tomcat through 5.5.25. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-6357 http://www.webapp-security.com/wp-content/uploads/2013/11/Apache-Tomcat-5.5.25-CSRF-Vulnerabilities.txt
Copyright	Copyright (C) 2021 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.