Apache Tomcat 4.1.32

This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Name	cpe:/a:apache:tomcat:4.1.32

Detail
Vendor	Apache	First view	2005-12-31
Product	Tomcat	Last view	2009-11-12
Version	4.1.32	Type	Application
Edition
Language
Update

CPE Product	cpe:/a:apache:tomcat

Activity : Yearly

Related : CVE

	Date	Alert	Access Vector	Access Complexity	Authentification
7.5	2009-11-12	CVE-2009-3548	Network	Low	None Requ...
5	2009-06-16	CVE-2008-5515	Network	Low	None Requ...
4.6	2009-06-05	CVE-2009-0783	Local	Low	None Requ...
4.3	2009-06-05	CVE-2009-0580	Network	Medium	None Requ...
5	2009-06-05	CVE-2009-0033	Network	Low	None Requ...
Hide \| Show 5 More...

	Date	Alert	Access Vector	Access Complexity	Authentification
2.6	2009-04-09	CVE-2008-5519	Network	High	None Requ...
4.3	2009-03-09	CVE-2009-0781	Network	Medium	None Requ...
2.6	2009-02-26	CVE-2008-4308	Network	High	None Requ...
5	2008-08-03	CVE-2008-2370	Network	Low	None Requ...
7.8	2005-12-31	CVE-2005-4836	Network	Low	None Requ...

CWE : Common Weakness Enumeration

%	id	Name
50% (5)	CWE-200	Information Exposure
20% (2)	CWE-22	Improper Limitation of a Pathname to a Restricted Directory ('Path ...
10% (1)	CWE-255	Credentials Management
10% (1)	CWE-79	Failure to Preserve Web Page Structure ('Cross-site Scripting')
10% (1)	CWE-20	Improper Input Validation

Oval Markup Language : Definitions

OvalID	Name
oval:org.mitre.oval:def:5876	Security vulnerability in the RequestDispatcher class in Tomcat 5.5 bundled w...
oval:org.mitre.oval:def:10577	Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.5.26, and 6.0.0 through 6...
oval:org.mitre.oval:def:6445	HP-UX Running Tomcat Servlet Engine, Remote Denial of Service (DoS), Unauthor...
oval:org.mitre.oval:def:10422	Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, 6.0.0 through 6.0.1...
oval:org.mitre.oval:def:5739	HP-UX Running Tomcat Servlet Engine, Remote Denial of Service (DoS), Unauthor...
Hide \| Show 8 More...

id	Name
oval:org.mitre.oval:def:10231	Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6...
oval:org.mitre.oval:def:9101	Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6...
oval:org.mitre.oval:def:6628	HP-UX Running Tomcat Servlet Engine, Remote Denial of Service (DoS), Unauthor...
oval:org.mitre.oval:def:6564	HP-UX Running Tomcat Servlet Engine, Remote Denial of Service (DoS), Unauthor...
oval:org.mitre.oval:def:11041	Cross-site scripting (XSS) vulnerability in jsp/cal/cal2.jsp in the calendar ...
oval:org.mitre.oval:def:6450	HP-UX Running Tomcat Servlet Engine, Remote Denial of Service (DoS), Unauthor...
oval:org.mitre.oval:def:10716	Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, and 6.0.0 through 6...
oval:org.mitre.oval:def:7033	HP-UX Running Tomcat Servlet Engine, Remote Increase in Privilege, Arbitrary ...

Open Source Vulnerability Database (OSVDB)

id	Description
60176	Apache Tomcat Windows Installer Admin Default Password
55056	Apache Tomcat Cross-application TLD File Manipulation
55055	Apache Tomcat Illegally URL Encoded Password Request Username Enumeration
55054	Apache Tomcat Java AJP Connector mod_jk Load Balancing Worker Malformed Heade...
55053	Apache Tomcat Crafted Request Security Restraint Bypass Arbitrary Content Access
Hide \| Show 5 More...

id	Description
53381	Apache Tomcat JK Connector Content-Length Header Cross-user Information Discl...
52899	Apache Tomcat Examples Web Application Calendar Application jsp/cal/cal2.jsp ...
52407	Apache Tomcat doRead Method POST Content Information Disclosure
47463	Apache Tomcat RequestDispatcher Traversal Arbitrary File Access
34880	Apache Tomcat HTTP/1.1 Connector NULL Byte Request JSP Source Disclosure

Metasploit Exploits

id	Description
2009-11-09	Apache Tomcat Manager Application Deployer Authenticated Code Execution

Copyright Security-Database 2006-2013 - Powered by themself ;) in 0.1532s

Facebook rss twitter linkedin mail