Multiple vulnerabilities in Apache Tomcat
By chandan on Nov 04, 2011
|CVE Description||CVSSv2 Base Score||Component||Product and Resolution|
|CVE-2010-3718 File permission bypass vulnerability||1.2||Apache Tomcat||
|CVE-2010-4172 Multiple cross-site scripting (XSS) vulnerabilities||4.3|
|CVE-2010-4312 Configuration vulnerability||6.4|
|CVE-2011-0013 Multiple cross-site scripting (XSS) vulnerabilities||4.3|
|CVE-2011-0534 Denial of Service (DoS) vulnerability||5.0|
This notification describes vulnerabilities fixed in third-party components that are included in Sun's product distribution.
Information about vulnerabilities affecting Oracle Sun products can be found on Oracle Critical Patch Updates and Security Alerts page.