Apache Tomcat mod_jk Content Length Information Disclosure Vulnerability

Bugtraq ID: 34412
Class: Design Error
CVE: CVE-2008-5519
Remote: Yes
Local: No
Published: Apr 07 2009 12:00AM
Updated: Jan 12 2010 05:11PM
Credit: Red Hat Security Response Team <br><br>
Vulnerable: SuSE SUSE Linux Enterprise 11
SuSE Linux 9
SuSE Linux 11
SuSE Linux 10.0
Sun Solaris 9_x86
Sun Solaris 9
Sun Solaris 10_x86
Sun Solaris 10
S.u.S.E. openSUSE 11.0
S.u.S.E. openSUSE 10.3
S.u.S.E. openSUSE 10.3
Redhat Red Hat Network Satellite (for RHEL 4) 5.1
Redhat Network Satellite (for RHEL 4 AS) 5.2
Redhat Application Stack v2 0
Redhat Application Server WS4 2
Redhat Application Server ES4 2
Redhat Application Server AS4 2
Gentoo Linux
Debian Linux 5.0 sparc
Debian Linux 5.0 s/390
Debian Linux 5.0 powerpc
Debian Linux 5.0 mipsel
Debian Linux 5.0 mips
Debian Linux 5.0 m68k
Debian Linux 5.0 ia-64
Debian Linux 5.0 ia-32
Debian Linux 5.0 hppa
Debian Linux 5.0 armel
Debian Linux 5.0 arm
Debian Linux 5.0 amd64
Debian Linux 5.0 alpha
Debian Linux 5.0
Debian Linux 4.0 sparc
Debian Linux 4.0 s/390
Debian Linux 4.0 powerpc
Debian Linux 4.0 mipsel
Debian Linux 4.0 mips
Debian Linux 4.0 m68k
Debian Linux 4.0 ia-64
Debian Linux 4.0 ia-32
Debian Linux 4.0 hppa
Debian Linux 4.0 armel
Debian Linux 4.0 arm
Debian Linux 4.0 amd64
Debian Linux 4.0 alpha
Debian Linux 4.0
Apache mod_jk 1.2.26
Apache mod_jk 1.2.25
Apache mod_jk 1.2.21
Apache mod_jk 1.2.20
Apache mod_jk 1.2.19
Apache mod_jk 1.2.18
Apache mod_jk 1.2.15
Apache mod_jk 1.2.14 .1
Apache mod_jk 1.2.14 .1
Apache mod_jk 1.2.1
Apache mod_jk 1.2
Not Vulnerable: Apache mod_jk 1.2.27


 

Privacy Statement
Copyright 2010, SecurityFocus