oval:org.mitre.oval:def:20966

Definition Id: oval:org.mitre.oval:def:20966
 
Oval ID: oval:org.mitre.oval:def:20966
Title: RHSA-2013:0640: tomcat5 security update (Important)
Description: The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.36, 6.x before 6.0.36, and 7.x before 7.0.30 does not properly check for stale nonce values in conjunction with enforcement of proper credentials, which makes it easier for remote attackers to bypass intended access restrictions by sniffing the network for valid requests.
Family: unix Class: patch
Reference(s): RHSA-2013:0640-00
CESA-2013:0640
CVE-2012-3546
CVE-2012-5885
CVE-2012-5886
CVE-2012-5887
Version: 59
Platform(s): Red Hat Enterprise Linux 5
CentOS Linux 5
Product(s): tomcat5
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:11414
 
Oval ID: oval:org.mitre.oval:def:11414
Title: The operating system installed on the system is Red Hat Enterprise Linux 5
Description: The operating system installed on the system is Red Hat Enterprise Linux 5.
Family: unix Class: inventory
Reference(s): cpe:/o:redhat:enterprise_linux:5
Version: 7
Platform(s): Red Hat Enterprise Linux 5
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:20966
Definition Id: oval:org.mitre.oval:def:15802
 
Oval ID: oval:org.mitre.oval:def:15802
Title: The operating system installed on the system is CentOS Linux 5.x
Description: The operating system installed on the system is CentOS Linux 5.x
Family: unix Class: inventory
Reference(s): cpe:/o:centos:centos:5
Version: 7
Platform(s): CentOS Linux 5
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:20966