|
|
Apache Tomcat Cookie Quote Handling Remote Information Disclosure Vulnerability
|
Bugtraq ID:
|
27706
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CVE-2007-5333
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Feb 09 2008 12:00AM
|
|
Updated:
|
Mar 11 2009 05:46PM
|
|
Credit:
|
John Kew and Ishikawa Yoshihiro via JPCERT/CC are credited with the discovery of this vulnerability.
|
|
Vulnerable:
|
WiKID Systems WiKID Server 3.0.4
VMWare VirtualCenter Management Server 2
VMWare ESX Server 3.0.2
VMWare ESX Server 3.0.1
VMWare ESX Server 3.5
S.u.S.E. SUSE Linux Enterprise Server 10 SP2
RedHat Fedora 8 0
RedHat Fedora 7 0
Pardus Linux 2008 0
MandrakeSoft Linux Mandrake 2008.1 x86_64
MandrakeSoft Linux Mandrake 2008.1
IBM Tivoli Netcool/Webtop 2.1 Fix Pack 4
IBM Tivoli Netcool/Webtop 2.1
IBM Tivoli Netcool/Webtop 1.3.1
Gentoo www-servers/tomcat 6.0.15
Gentoo www-servers/tomcat 6.0.14
Gentoo www-servers/tomcat 6.0.13
Gentoo www-servers/tomcat 6.0.12
Gentoo www-servers/tomcat 6.0.11
Gentoo www-servers/tomcat 6.0.10
Gentoo www-servers/tomcat 6.0.9
Gentoo www-servers/tomcat 6.0.8
Gentoo www-servers/tomcat 6.0.7
Gentoo www-servers/tomcat 6.0.6
Gentoo www-servers/tomcat 6.0.5
Gentoo www-servers/tomcat 6.0.4
Gentoo www-servers/tomcat 6.0.3
Gentoo www-servers/tomcat 6.0.2
Gentoo www-servers/tomcat 6.0.1
Gentoo www-servers/tomcat 6.0
Apple Mac OS X Server 10.5.5
Apple Mac OS X Server 10.4.11
Apple Mac OS X Server 10.4.10
Apple Mac OS X Server 10.4.9
Apple Mac OS X Server 10.4.8
Apple Mac OS X Server 10.4.7
Apple Mac OS X Server 10.4.6
Apple Mac OS X Server 10.4.5
Apple Mac OS X Server 10.4.4
Apple Mac OS X Server 10.4.3
Apple Mac OS X Server 10.4.2
Apple Mac OS X Server 10.4.1
Apple Mac OS X Server 10.4
Apple Mac OS X 10.4.11
Apple Mac OS X 10.4.10
Apple Mac OS X 10.4.9
Apple Mac OS X 10.4.8
Apple Mac OS X 10.4.7
Apple Mac OS X 10.4.6
Apple Mac OS X 10.4.5
Apple Mac OS X 10.4.4
Apple Mac OS X 10.4.3
Apple Mac OS X 10.4.2
Apple Mac OS X 10.4.1
Apple Mac OS X 10.4
Apache Software Foundation Tomcat 6.0.15
Apache Software Foundation Tomcat 6.0.14
Apache Software Foundation Tomcat 6.0.13
Apache Software Foundation Tomcat 6.0.12
Apache Software Foundation Tomcat 6.0.11
Apache Software Foundation Tomcat 6.0.10
Apache Software Foundation Tomcat 6.0.9
Apache Software Foundation Tomcat 6.0.8
Apache Software Foundation Tomcat 6.0.7
Apache Software Foundation Tomcat 6.0.6
Apache Software Foundation Tomcat 6.0.5
Apache Software Foundation Tomcat 6.0.4
Apache Software Foundation Tomcat 6.0.3
Apache Software Foundation Tomcat 6.0.2
Apache Software Foundation Tomcat 6.0.1
Apache Software Foundation Tomcat 6.0
Apache Software Foundation Tomcat 5.5.25
Apache Software Foundation Tomcat 5.5.24
Apache Software Foundation Tomcat 5.5.23
Apache Software Foundation Tomcat 5.5.22
Apache Software Foundation Tomcat 5.5.21
Apache Software Foundation Tomcat 5.5.20
Apache Software Foundation Tomcat 5.5.20
Apache Software Foundation Tomcat 5.5.19
Apache Software Foundation Tomcat 5.5.18
Apache Software Foundation Tomcat 5.5.17
Apache Software Foundation Tomcat 5.5.17
Apache Software Foundation Tomcat 5.5.16
Apache Software Foundation Tomcat 5.5.15
Apache Software Foundation Tomcat 5.5.14
Apache Software Foundation Tomcat 5.5.13
Apache Software Foundation Tomcat 5.5.12
Apache Software Foundation Tomcat 5.5.12
Apache Software Foundation Tomcat 5.5.11
Apache Software Foundation Tomcat 5.5.11
Apache Software Foundation Tomcat 5.5.10
Apache Software Foundation Tomcat 5.5.10
Apache Software Foundation Tomcat 5.5.9
Apache Software Foundation Tomcat 5.5.9
Apache Software Foundation Tomcat 5.5.8
Apache Software Foundation Tomcat 5.5.8
Apache Software Foundation Tomcat 5.5.7
Apache Software Foundation Tomcat 5.5.7
Apache Software Foundation Tomcat 5.5.6
Apache Software Foundation Tomcat 5.5.6
Apache Software Foundation Tomcat 5.5.5
Apache Software Foundation Tomcat 5.5.5
Apache Software Foundation Tomcat 5.5.4
Apache Software Foundation Tomcat 5.5.4
Apache Software Foundation Tomcat 5.5.3
Apache Software Foundation Tomcat 5.5.3
Apache Software Foundation Tomcat 5.5.2
Apache Software Foundation Tomcat 5.5.2
Apache Software Foundation Tomcat 5.5.1
Apache Software Foundation Tomcat 5.5.1
Apache Software Foundation Tomcat 5.5
Apache Software Foundation Tomcat 5.5
Apache Software Foundation Tomcat 5.4
Apache Software Foundation Tomcat 5.3
Apache Software Foundation Tomcat 5.2
Apache Software Foundation Tomcat 5.1
Apache Software Foundation Tomcat 5.0.31
Apache Software Foundation Tomcat 5.0.30
Apache Software Foundation Tomcat 5.0.30
Apache Software Foundation Tomcat 5.0.28
Apache Software Foundation Tomcat 5.0.19
Apache Software Foundation Tomcat 5.0.16
Apache Software Foundation Tomcat 5.0.15
Apache Software Foundation Tomcat 5.0.14
Apache Software Foundation Tomcat 5.0.13
Apache Software Foundation Tomcat 5.0.12
Apache Software Foundation Tomcat 5.0.11
Apache Software Foundation Tomcat 5.0.10
Apache Software Foundation Tomcat 5.0.9
Apache Software Foundation Tomcat 5.0.8
Apache Software Foundation Tomcat 5.0.7
Apache Software Foundation Tomcat 5.0.6
Apache Software Foundation Tomcat 5.0.5
Apache Software Foundation Tomcat 5.0.4
Apache Software Foundation Tomcat 5.0.3
Apache Software Foundation Tomcat 5.0.2
Apache Software Foundation Tomcat 5.0.1
Apache Software Foundation Tomcat 5.0
Apache Software Foundation Tomcat 4.1.36
Apache Software Foundation Tomcat 4.1.36
Apache Software Foundation Tomcat 4.1.34
Apache Software Foundation Tomcat 4.1.34
+
Gentoo Linux 1.4 _rc3
+
Gentoo Linux 1.4 _rc2
+
Gentoo Linux 1.4 _rc1
+
Gentoo Linux 1.2
Apache Software Foundation Tomcat 4.1.32
Apache Software Foundation Tomcat 4.1.31
Apache Software Foundation Tomcat 4.1.24
Apache Software Foundation Tomcat 4.1.12
Apache Software Foundation Tomcat 4.1.10
Apache Software Foundation Tomcat 4.1.9 beta
Apache Software Foundation Tomcat 4.1.3 beta
Apache Software Foundation Tomcat 4.1
-
BSDI BSD/OS 4.0
-
Caldera OpenLinux 2.4
-
Conectiva Linux 5.1
-
Debian Linux 2.3
-
Debian Linux 2.2
-
Debian Linux 2.1
-
Digital UNIX 4.0
-
FreeBSD FreeBSD 5.0
-
FreeBSD FreeBSD 4.5
-
MandrakeSoft Linux Mandrake 7.1
-
MandrakeSoft Linux Mandrake 7.0
-
NetBSD NetBSD 1.4.2 x86
-
NetBSD NetBSD 1.4.1 x86
-
RedHat Linux 6.2 i386
-
RedHat Linux 6.1 i386
-
SGI IRIX 6.5
-
SGI IRIX 6.4
-
SGI IRIX 3.3
-
Sun Solaris 8
-
Sun Solaris 7.0
Apache Software Foundation Tomcat 4.1
Apache Software Foundation Tomcat 5.0
|
|
|
|
Not Vulnerable:
|
WiKID Systems WiKID Server 3.0.5
IBM Tivoli Netcool/Webtop 2.1 Fix Pack 5
IBM Tivoli Netcool/Webtop 1.3.13
Apache Software Foundation Tomcat 6.0.16
Apache Software Foundation Tomcat 5.5.26
Apache Software Foundation Tomcat 4.1.37
|
|
|
