Download
| Alert*
oval:org.secpod.oval:def:113978
Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Java Servlet and JavaServer Pages specifications are developed by Sun under the Java Community Process. Tomcat is developed in an open and participatory e ... oval:org.secpod.oval:def:114015 Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Java Servlet and JavaServer Pages specifications are developed by Sun under the Java Community Process. Tomcat is developed in an open and participatory e ... oval:org.secpod.oval:def:1600856 Incorrect documentation of CGI Servlet search algorithm may lead to misconfiguration:As part of the fix for bug 61201, the documentation for Apache Tomcat included an updated description of the search algorithm used by the CGI Servlet to identify which script to execute. The update was not correct. ... oval:org.secpod.oval:def:89043907 This update for tomcat fixes the following issues: Security issues fixed: - CVE-2018-1305: Fixed late application of security constraints that can lead to resource exposure for unauthorised users . - CVE-2018-1304: Fixed incorrect handling of empty string URL in security constraints that can lead to ... oval:org.secpod.oval:def:2102298 As part of the fix for bug 61201, the documentation for Apache Tomcat 9.0.0.M22 to 9.0.1, 8.5.16 to 8.5.23, 8.0.45 to 8.0.47 and 7.0.79 to 7.0.82 included an updated description of the search algorithm used by the CGI Servlet to identify which script to execute. The update was not correct. As a resu ... oval:org.secpod.oval:def:1600839 Incorrect documentation of CGI Servlet search algorithm may lead to misconfigurationAs part of the fix for bug 61201, the documentation for Apache Tomcat included an updated description of the search algorithm used by the CGI Servlet to identify which script to execute. The update was not correct. A ... oval:org.secpod.oval:def:1600836 Incorrect documentation of CGI Servlet search algorithm may lead to misconfiguration:As part of the fix for bug 61201, the documentation for Apache Tomcat included an updated description of the search algorithm used by the CGI Servlet to identify which script to execute. The update was not correct. ... oval:org.secpod.oval:def:46894 The host is installed with Apache Tomcat 7.0.79 before 7.0.83, 8.5.16 before 8.5.24, 8.0.45 before 8.0.48 or 9.0.0.M22 before 9.0.2 and is prone to a CGI search algorithm vulnerability. A flaw is present in an updated description of the search algorithm used by the CGI Servlet to identify which scri ... oval:org.secpod.oval:def:1000800 The remote host is missing a patch 152511-07 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:1000704 The remote host is missing a patch 152510-07 containing a security fix. For more information please visit the reference link. oval:org.secpod.oval:def:70429 tomcat8: Servlet and JSP engine - tomcat7: Servlet and JSP engine Several security issues were fixed in Tomcat. |