|
|
Apache Tomcat Accept-Language Cross Site Scripting Vulnerability
|
Bugtraq ID:
|
24524
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CVE-2007-1358
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Jun 19 2007 12:00AM
|
|
Updated:
|
Apr 29 2009 11:46PM
|
|
Credit:
|
Masato Anzai and Toshiharu Sugiyama are credited with the discovery of this vulnerability.
|
|
Vulnerable:
|
Sun Solaris 9_x86
Sun Solaris 9_sparc
Sun Solaris 9
Sun Solaris 10_x86
Sun Solaris 10_sparc
Sun Solaris 10
RedHat Red Hat Network Satellite Server 5.0
RedHat Network Satellite (for RHEL 4) 5.1
RedHat Network Satellite (for RHEL 4) 4.2
RedHat Fedora 7 0
RedHat Network Satellite (for RHEL 3) 4.2
HP HP-UX B.11.31
HP HP-UX B.11.23
HP HP-UX B.11.11
Computer Associates Cohesion Application Configuration Manager 4.5
Apple Mac OS X Server 10.4.10
Apple Mac OS X Server 10.3.9
Apple Mac OS X 10.4.10
Apple Mac OS X 10.3.9
Apache Software Foundation Tomcat 6.0.13
Apache Software Foundation Tomcat 6.0.12
Apache Software Foundation Tomcat 6.0.11
Apache Software Foundation Tomcat 6.0.10
Apache Software Foundation Tomcat 6.0.5
Apache Software Foundation Tomcat 6.0.4
Apache Software Foundation Tomcat 6.0.3
Apache Software Foundation Tomcat 6.0.2
Apache Software Foundation Tomcat 6.0.1
Apache Software Foundation Tomcat 6.0
Apache Software Foundation Tomcat 5.5.20
Apache Software Foundation Tomcat 5.5.19
Apache Software Foundation Tomcat 5.5.18
Apache Software Foundation Tomcat 5.5.17
Apache Software Foundation Tomcat 5.5.16
Apache Software Foundation Tomcat 5.5.15
Apache Software Foundation Tomcat 5.5.14
Apache Software Foundation Tomcat 5.5.13
Apache Software Foundation Tomcat 5.5.12
Apache Software Foundation Tomcat 5.5.11
Apache Software Foundation Tomcat 5.5.10
Apache Software Foundation Tomcat 5.5.2
Apache Software Foundation Tomcat 5.5.1
Apache Software Foundation Tomcat 5.5
Apache Software Foundation Tomcat 5.0.30
Apache Software Foundation Tomcat 5.0.16
Apache Software Foundation Tomcat 5.0.15
Apache Software Foundation Tomcat 5.0.14
Apache Software Foundation Tomcat 5.0.13
Apache Software Foundation Tomcat 5.0.12
Apache Software Foundation Tomcat 5.0.11
Apache Software Foundation Tomcat 5.0.10
Apache Software Foundation Tomcat 5.0.3
Apache Software Foundation Tomcat 5.0.2
Apache Software Foundation Tomcat 5.0.1
Apache Software Foundation Tomcat 4.1.34
Apache Software Foundation Tomcat 4.1
Apache Software Foundation Tomcat 4.0.6
Apache Software Foundation Tomcat 4.0.5
Apache Software Foundation Tomcat 4.0.4
Apache Software Foundation Tomcat 4.0.3
Apache Software Foundation Tomcat 4.0.2
Apache Software Foundation Tomcat 4.0.1
Apache Software Foundation Tomcat 4.0
Apache Software Foundation Tomcat 5.0
|
|
|
|
Not Vulnerable:
|
Computer Associates Cohesion Application Configuration Manager 4.5 SP1
Apache Software Foundation Tomcat 6.0.6
Apache Software Foundation Tomcat 5.5.21
Apache Software Foundation Tomcat 4.1.36
|
|
|
