Multiple vulnerabilities in Apache Tomcat

CVE DescriptionCVSSv2 Base ScoreComponentProduct and Resolution
CVE-2010-3718 File permission bypass vulnerability 1.2 Apache Tomcat
Solaris 10 SPARC: 122911-24 X86: 122912-24
Solaris 9 SPARC: 114016-06 X86: 114017-06
Solaris 11 Express snv_151a + 7002141
CVE-2010-4172 Multiple cross-site scripting (XSS) vulnerabilities 4.3
CVE-2010-4312 Configuration vulnerability 6.4
CVE-2011-0013 Multiple cross-site scripting (XSS) vulnerabilities 4.3
CVE-2011-0534 Denial of Service (DoS) vulnerability 5.0

This notification describes vulnerabilities fixed in third-party components that are included in Sun's product distribution.
Information about vulnerabilities affecting Oracle Sun products can be found on Oracle Critical Patch Updates and Security Alerts page.

Comments:

Post a Comment:
Comments are closed for this entry.
About

This blog provides security vulnerability fix notifications relevant to third party software components distributed and supported as part of Oracle Products.
Summarized version of this blog is available as a mapping of CVEs and solutions.

Search

Archives
« April 2014
SunMonTueWedThuFriSat
  
2
3
4
5
6
7
8
9
10
11
12
13
14
16
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today