• info
• discussion
• exploit
• solution
• references

Apache Tomcat Authentication Header Realm Name Information Disclosure Vulnerability

Solution:
Updates are available. Please see the references for more information.


Mandriva Linux Mandrake 2008.0

• Mandriva tomcat5-5.5.23-9.2.10.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-admin-webapps-5.5.23-9.2.10.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-common-lib-5.5.23-9.2.10.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-5.5.23-9.2.10.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-javadoc-5.5.23-9.2.10.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jsp-2.0-api-5.5.23-9.2.10.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jsp-2.0-api-javadoc-5.5.23-9.2.10.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-server-lib-5.5.23-9.2.10.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-servlet-2.4-api-5.5.23-9.2.10.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-servlet-2.4-api-javadoc-5.5.23-9.2.10.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-webapps-5.5.23-9.2.10.3mdv2008.0.i586.rpm
  http://www.mandriva.com/en/download/

Mandriva Linux Mandrake 2009.0 x86_64

• Mandriva tomcat5-5.5.27-0.3.0.3mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-admin-webapps-5.5.27-0.3.0.3mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-common-lib-5.5.27-0.3.0.3mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-5.5.27-0.3.0.3mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-eclipse-5.5.27-0.3.0.3mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-javadoc-5.5.27-0.3.0.3mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jsp-2.0-api-5.5.27-0.3.0.3mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jsp-2.0-api-javadoc-5.5.27-0.3.0.3mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-server-lib-5.5.27-0.3.0.3mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-servlet-2.4-api-5.5.27-0.3.0.3mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-servlet-2.4-api-javadoc-5.5.27-0.3.0.3mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-webapps-5.5.27-0.3.0.3mdv2009.0.noarch.rpm
  http://www.mandriva.com/en/download/

Mandriva Linux Mandrake 2009.1 x86_64

• Mandriva tomcat5-5.5.27-0.3.0.2mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-admin-webapps-5.5.27-0.3.0.2mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-common-lib-5.5.27-0.3.0.2mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-5.5.27-0.3.0.2mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-eclipse-5.5.27-0.3.0.2mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-javadoc-5.5.27-0.3.0.2mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jsp-2.0-api-5.5.27-0.3.0.2mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jsp-2.0-api-javadoc-5.5.27-0.3.0.2mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-server-lib-5.5.27-0.3.0.2mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-servlet-2.4-api-5.5.27-0.3.0.2mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-servlet-2.4-api-javadoc-5.5.27-0.3.0.2mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-webapps-5.5.27-0.3.0.2mdv2009.1.noarch.rpm
  http://www.mandriva.com/en/download/

MandrakeSoft Enterprise Server 5

• Mandriva tomcat5-5.5.27-0.3.0.3mdvmes5.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-admin-webapps-5.5.27-0.3.0.3mdvmes5.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-common-lib-5.5.27-0.3.0.3mdvmes5.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-5.5.27-0.3.0.3mdvmes5.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-eclipse-5.5.27-0.3.0.3mdvmes5.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jasper-javadoc-5.5.27-0.3.0.3mdvmes5.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jsp-2.0-api-5.5.27-0.3.0.3mdvmes5.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-jsp-2.0-api-javadoc-5.5.27-0.3.0.3mdvmes5.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-server-lib-5.5.27-0.3.0.3mdvmes5.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-servlet-2.4-api-5.5.27-0.3.0.3mdvmes5.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-servlet-2.4-api-javadoc-5.5.27-0.3.0.3mdvmes5.1.noarch.rpm
  http://www.mandriva.com/en/download/


• Mandriva tomcat5-webapps-5.5.27-0.3.0.3mdvmes5.1.noarch.rpm
  http://www.mandriva.com/en/download/