Apache Tomcat CVE-2012-3546 Security Bypass Vulnerability

Bugtraq ID: 56812
Class: Design Error
CVE: CVE-2012-3546
Remote: Yes
Local: No
Published: Dec 04 2012 12:00AM
Updated: Jun 24 2014 10:35PM
Credit: Tomcat security team
Vulnerable: RedHat Enterprise Linux Desktop Workstation 5 client
Red Hat JBoss Enterprise Web Server for RHEL 6 1.0
Red Hat JBoss Enterprise Web Server for RHEL 5 Server 1.0
Red Hat JBoss Enterprise Web Platform for RHEL 5 Server 5
Red Hat JBoss Enterprise Web Platform for RHEL 4ES 5
Red Hat JBoss Enterprise Web Platform for RHEL 4AS 5
Red Hat JBoss Enterprise BRMS Platform 5.1
Red Hat JBoss Enterprise Application Platform for RHEL 5 Server 5
Red Hat JBoss Enterprise Application Platform for RHEL 4ES 5
Red Hat JBoss Enterprise Application Platform for RHEL 4AS 5
Red Hat JBoss Enterprise Application Platform 4.3 EL5
Red Hat JBoss Enterprise Application Platform 4.3 EL4
Red Hat JBoss Enterprise Application Platform 4.3
Red Hat JBoss Enterprise Application Platform 4.3.0.CP10
Red Hat Fedora 16
Red Hat Enterprise Linux Workstation Optional 6
Red Hat Enterprise Linux Workstation 6
Red Hat Enterprise Linux Server Optional 6
Red Hat Enterprise Linux Server 6
Red Hat Enterprise Linux HPC Node Optional 6
Red Hat Enterprise Linux Desktop Optional 6
Red Hat Enterprise Linux Desktop 5 client
Red Hat Enterprise Linux 5 Server
Oracle Enterprise Linux 6.2
Oracle Enterprise Linux 6
Oracle Enterprise Linux 5
HP Network Node Manager i 9.0
HP HP-UX B.11.31
CentOS CentOS 6
CentOS CentOS 5
Avaya Voice Portal 5.1.2
Avaya Voice Portal 5.1.1
Avaya Voice Portal 5.1 SP1
Avaya Voice Portal 5.1
Avaya Voice Portal 5.0 SP2
Avaya Voice Portal 5.0 SP1
Avaya Voice Portal 5.0
Avaya Meeting Exchange 5.2 SP2
Avaya Meeting Exchange 5.2
Avaya Meeting Exchange 5.1
Avaya Meeting Exchange 5.0 SP2
Avaya IQ 4.1
Avaya IQ 5.2
Avaya IQ 5.1.1
Avaya IQ 5.1
Avaya IQ 5
Avaya IQ 4.2
Avaya IQ 4.0
Avaya IP Office Application Server 8.1
Avaya IP Office Application Server 8.0
Avaya IP Office Application Server 7.0
Avaya IP Office Application Server 6.1
Avaya IP Office Application Server 6.0
Avaya Communication Server 1000M Signaling Server 7.5
Avaya Communication Server 1000M Signaling Server 7.0
Avaya Communication Server 1000M Signaling Server 6.0
Avaya Communication Server 1000M 7.5
Avaya Communication Server 1000M 7.0
Avaya Communication Server 1000M 6.0
Avaya Communication Server 1000E Signaling Server 7.5
Avaya Communication Server 1000E Signaling Server 7.0
Avaya Communication Server 1000E Signaling Server 6.0
Avaya Communication Server 1000E 7.5
Avaya Communication Server 1000E 7.0
Avaya Communication Server 1000E 6.0
Avaya Aura System Platform 6.0.2
Avaya Aura System Platform 6.0.1
Avaya Aura System Platform 6.0 SP3
Avaya Aura System Platform 6.0 SP2
Avaya Aura System Platform 6.0
Avaya Aura System Manager 6.2
Avaya Aura System Manager 6.1.3
Avaya Aura System Manager 6.1.2
Avaya Aura System Manager 6.1.1
Avaya Aura System Manager 6.1 SP2
Avaya Aura System Manager 6.1 Sp1
Avaya Aura System Manager 6.1
Avaya Aura System Manager 6.0 SP1
Avaya Aura System Manager 6.0
Avaya Aura SIP Enablement Services 5.2.1
Avaya Aura SIP Enablement Services 3.1.1
Avaya Aura SIP Enablement Services 3.1
Avaya Aura SIP Enablement Services 5.2
Avaya Aura SIP Enablement Services 5.1
Avaya Aura SIP Enablement Services 5.0
Avaya Aura SIP Enablement Services 4.0
Avaya Aura SIP Enablement Services 3.1
Avaya Aura SIP Enablement Services 3.0
Avaya Aura Session Manager 6.2
Avaya Aura Session Manager 6.1
Avaya Aura Session Manager 6.0
Avaya Aura Session Manager 5.2
Avaya Aura Presence Services 6.1.1
Avaya Aura Presence Services 6.1
Avaya Aura Presence Services 6.0
Avaya Aura Messaging 6.1
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Messaging 6.0.1
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Messaging 6.0
Avaya Aura Experience Portal 6.0
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Conferencing 6.0 Standard
Avaya Aura Conferencing 6.0 SP1 Standard
Avaya Aura Application Server 5300 SIP Core 2.1
Avaya Aura Application Server 5300 SIP Core 2.0
Avaya Aura Application Enablement Services 6.1.1
Avaya Aura Application Enablement Services 6.1
Apache Software Foundation Tomcat 7.0.23
Apache Software Foundation Tomcat 7.0.16
Apache Software Foundation Tomcat 7.0.14
Apache Software Foundation Tomcat 7.0.13
Apache Software Foundation Tomcat 7.0.12
Apache Software Foundation Tomcat 7.0.12
Apache Software Foundation Tomcat 7.0.2
Apache Software Foundation Tomcat 7.0.2
Apache Software Foundation Tomcat 7.0.1
Apache Software Foundation Tomcat 7.0.1
Apache Software Foundation Tomcat 7.0 beta
Apache Software Foundation Tomcat 7.0
Apache Software Foundation Tomcat 6.0.35
Apache Software Foundation Tomcat 6.0.32
Apache Software Foundation Tomcat 6.0.28
Apache Software Foundation Tomcat 6.0.28
Apache Software Foundation Tomcat 6.0.27
Apache Software Foundation Tomcat 6.0.27
Apache Software Foundation Tomcat 6.0.26
Apache Software Foundation Tomcat 6.0.25
Apache Software Foundation Tomcat 6.0.24
Apache Software Foundation Tomcat 6.0.20
Apache Software Foundation Tomcat 6.0.18
Apache Software Foundation Tomcat 6.0.17
Apache Software Foundation Tomcat 6.0.16
Apache Software Foundation Tomcat 6.0.15
Apache Software Foundation Tomcat 6.0.14
Apache Software Foundation Tomcat 6.0.13
Apache Software Foundation Tomcat 6.0.12
Apache Software Foundation Tomcat 6.0.11
Apache Software Foundation Tomcat 6.0.10
Apache Software Foundation Tomcat 6.0.3
Apache Software Foundation Tomcat 6.0.2
Apache Software Foundation Tomcat 6.0.1
Apache Software Foundation Tomcat 6.0
Apache Software Foundation Tomcat 7.0.22
Apache Software Foundation Tomcat 7.0.21
Apache Software Foundation Tomcat 7.0.20
Apache Software Foundation Tomcat 7.0.19
Apache Software Foundation Tomcat 7.0.18
Apache Software Foundation Tomcat 7.0.11
Apache Software Foundation Tomcat 7.0.10
Apache Software Foundation Tomcat 6.0.33
Apache Software Foundation Tomcat 6.0.32
Apache Software Foundation Tomcat 6.0.31
Apache Software Foundation Tomcat 6.0.30
Apache Software Foundation Tomcat 0
Not Vulnerable: Red Hat Jboss Enterprise Soa Platform 4.3.0 Cp05
Red Hat Jboss Enterprise Soa Platform 4.2.0 Cp05


 

Privacy Statement
Copyright 2010, SecurityFocus