Apache Tomcat Documentation Sample Application Multiple Cross-Site Scripting Vulnerabilities

Bugtraq ID: 24058
Class: Input Validation Error
CVE: CVE-2007-1355
Remote: Yes
Local: No
Published: May 19 2007 12:00AM
Updated: Jan 28 2009 12:19AM
Credit: Ferruh Mavituna is credited with the discovery of these vulnerabilities.
Vulnerable: Sun Solaris 9_x86
Sun Solaris 9_sparc
Sun Solaris 9
Sun Solaris 10_x86
Sun Solaris 10_sparc
Sun Solaris 10
RedHat Network Satellite (for RHEL 4) 5.1
RedHat Network Satellite (for RHEL 4) 4.2
Red Hat Red Hat Network Satellite Server 5.0
Red Hat Network Satellite (for RHEL 3) 4.2
Red Hat Fedora 7
HP HP-UX B.11.31
HP HP-UX B.11.23
HP HP-UX B.11.11
Computer Associates Cohesion Application Configuration Manager 4.5
Apple Mac OS X Server 10.4.11
Apple Mac OS X 10.4.11
Apache Software Foundation Tomcat 6.0.10
Apache Software Foundation Tomcat 6.0.9
Apache Software Foundation Tomcat 6.0.8
Apache Software Foundation Tomcat 6.0.7
Apache Software Foundation Tomcat 6.0.6
Apache Software Foundation Tomcat 6.0.5
Apache Software Foundation Tomcat 6.0.4
Apache Software Foundation Tomcat 6.0.3
Apache Software Foundation Tomcat 6.0.2
Apache Software Foundation Tomcat 6.0.1
Apache Software Foundation Tomcat 5.5.23
Apache Software Foundation Tomcat 5.5.22
Apache Software Foundation Tomcat 5.5.21
Apache Software Foundation Tomcat 5.5.20
Apache Software Foundation Tomcat 5.5.19
Apache Software Foundation Tomcat 5.5.18
Apache Software Foundation Tomcat 5.5.17
Apache Software Foundation Tomcat 5.5.16
Apache Software Foundation Tomcat 5.5.15
Apache Software Foundation Tomcat 5.5.14
Apache Software Foundation Tomcat 5.5.13
Apache Software Foundation Tomcat 5.5.12
Apache Software Foundation Tomcat 5.5.11
Apache Software Foundation Tomcat 5.5.10
Apache Software Foundation Tomcat 5.5.9
Apache Software Foundation Tomcat 5.5.8
Apache Software Foundation Tomcat 5.5.7
Apache Software Foundation Tomcat 5.5.6
Apache Software Foundation Tomcat 5.5.5
Apache Software Foundation Tomcat 5.5.4
Apache Software Foundation Tomcat 5.5.3
Apache Software Foundation Tomcat 5.5.2
Apache Software Foundation Tomcat 5.5.1
Apache Software Foundation Tomcat 5.5
Apache Software Foundation Tomcat 5.4
Apache Software Foundation Tomcat 5.3
Apache Software Foundation Tomcat 5.2
Apache Software Foundation Tomcat 5.1
Apache Software Foundation Tomcat 5.0.30
Apache Software Foundation Tomcat 5.0.16
Apache Software Foundation Tomcat 5.0.15
Apache Software Foundation Tomcat 5.0.14
Apache Software Foundation Tomcat 5.0.13
Apache Software Foundation Tomcat 5.0.12
Apache Software Foundation Tomcat 5.0.11
Apache Software Foundation Tomcat 5.0.10
Apache Software Foundation Tomcat 5.0.9
Apache Software Foundation Tomcat 5.0.8
Apache Software Foundation Tomcat 5.0.7
Apache Software Foundation Tomcat 5.0.6
Apache Software Foundation Tomcat 5.0.5
Apache Software Foundation Tomcat 5.0.4
Apache Software Foundation Tomcat 5.0.3
Apache Software Foundation Tomcat 5.0.2
Apache Software Foundation Tomcat 5.0.1
Apache Software Foundation Tomcat 4.1.36
Apache Software Foundation Tomcat 4.1
Apache Software Foundation Tomcat 4.0.6
Apache Software Foundation Tomcat 4.0.5
Apache Software Foundation Tomcat 4.0.4
Apache Software Foundation Tomcat 4.0.3
Apache Software Foundation Tomcat 4.0.2
Apache Software Foundation Tomcat 4.0.1
Apache Software Foundation Tomcat 4.0
Apache Software Foundation Tomcat 5.0
Not Vulnerable: Computer Associates Cohesion Application Configuration Manager 4.5 SP1
Apache Software Foundation Tomcat 6.0.11
Apache Software Foundation Tomcat 4.1.37


 

Privacy Statement
Copyright 2010, SecurityFocus