Apache Tomcat 'HttpServletResponse.sendError()' Cross Site Scripting Vulnerability

Apache Tomcat 'HttpServletResponse.sendError()' Cross Site Scripting Vulnerability

References:

[Security-announce] UPDATED VMSA-2009-0002.1 VirtualCenter Update 4 and ESX patc (VMware)
Apache Tomcat 4.x vulnerabilities (Apache)
Apache Tomcat 5.x vulnerabilities (Apache)
Apache Tomcat 6.x vulnerabilities (Apache)
Apache Tomcat Homepage (Apache)
CA20090615-02: CA Service Desk Tomcat Cross Site Scripting Vulnerability (Ken Williams)
Release Name: 3.0.5 (WiKID Systems)
Solution 251986 : Security Vulnerabilities in Tomcat 5.5 may Lead to Cross S (Sun Microsystem)
ZLM 7.3 IR3 Tomcat 5.0.30 to fix reported security vulnerabilities (Novell)
[CVE-2008-1232] Apache Tomcat XSS vulnerability (Mark Thomas )
CA20090615-02: CA Service Desk Tomcat Cross Site Scripting Vulnerability ("Williams, James K" )
VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release addre (VMware Security Team )
ASA-2008-401 - tomcat security update (RHSA-2008-0862) (Avaya)
CA20090615-02: Security Notice for CA Service Desk (Computer Associates)
CA20090806-02: Security Notice for Unicenter (Computer Associates)
RHSA-2008:0648-10 tomcat security update (Red Hat)
Tomcat 5.0.28 in ZLM 7.3 subject to "Multiple Vendor Multiple HTTP Request Smugg (Novell)
Tomcat 5.0.28 in ZLM 7.3 subject to Multiple Vendor Multiple HTTP Request Smuggl (Novell)

Privacy Statement
Copyright 2010, SecurityFocus