[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

ALAS-2013-196 ---- tomcat6

ID: oval:org.secpod.oval:def:1600256Date: (C)2016-05-19   (M)2023-12-07
Class: PATCHFamily: unix




The tomcat5, tomcat6, and tomcat7 init scripts, as used in the RPM distribution of Tomcat for JBoss Enterprise Web Server 1.0.2 and 2.0.0, and Red Hat Enterprise Linux 5 and 6, allow local users to change the ownership of arbitrary files via a symlink attack on tomcat5-initd.log, tomcat6-initd.log, catalina.out, or tomcat7-initd.log.

Platform:
Amazon Linux AMI
Product:
tomcat6
Reference:
ALAS-2013-196
CVE-2013-1976
CVE    1
CVE-2013-1976
CPE    2
cpe:/o:amazon:linux
cpe:/a:apache:tomcat6

© SecPod Technologies