CVSS: 5.3EPSS: 26%CPEs: 90EXPL: 0CVE-2012-0022 – tomcat: large number of parameters DoS
https://notcve.org/view.php?id=CVE-2012-0022
19 Jan 2012 — Apache Tomcat 5.5.x before 5.5.35, 6.x before 6.0.34, and 7.x before 7.0.23 uses an inefficient approach for handling parameters, which allows remote attackers to cause a denial of service (CPU consumption) via a request that contains many parameters and parameter values, a different vulnerability than CVE-2011-4858. Apache Tomcat v5.5.x antes de v5.5.35, v6.x antes de v6.0.34, v7.x antes de v7.0.23 utiliza un método ineficiente para el manejo de parámetros, lo que permite provocar una denegación de servici... • http://archives.neohapsis.com/archives/bugtraq/2012-01/0112.html • CWE-189: Numeric Errors •
CVSS: 5.3EPSS: 2%CPEs: 26EXPL: 0CVE-2011-3375 – tomcat: information disclosure due to improper response and request object recycling
https://notcve.org/view.php?id=CVE-2011-3375
19 Jan 2012 — Apache Tomcat 6.0.30 through 6.0.33 and 7.x before 7.0.22 does not properly perform certain caching and recycling operations involving request objects, which allows remote attackers to obtain unintended read access to IP address and HTTP header information in opportunistic circumstances by reading TCP data. Apache Tomcat v6.0.30 a v6.0.33 y v7.x antes de v7.0.22 no realiza correctamente ciertas operaciones de almacenamiento en caché y reciclado de objetos de solicitud, lo cual permite a atacantes remotos ob... • http://tomcat.apache.org/security-6.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 4%CPEs: 77EXPL: 0CVE-2011-1184 – tomcat: Multiple weaknesses in HTTP DIGEST authentication
https://notcve.org/view.php?id=CVE-2011-1184
14 Jan 2012 — The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not have the expected countermeasures against replay attacks, which makes it easier for remote attackers to bypass intended access restrictions by sniffing the network for valid requests, related to lack of checking of nonce (aka server nonce) and nc (aka nonce-count or client nonce count) values. La implementación HTTP Digest Access Authentication en Apache Tomcat v5.5.x ... • http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00002.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.3EPSS: 5%CPEs: 77EXPL: 0CVE-2011-5062 – tomcat: Multiple weaknesses in HTTP DIGEST authentication
https://notcve.org/view.php?id=CVE-2011-5062
14 Jan 2012 — The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check qop values, which might allow remote attackers to bypass intended integrity-protection requirements via a qop=auth value, a different vulnerability than CVE-2011-1184. La implementación HTTP Digest Access Authentication en Apache Tomcat v5.5.x anterior a v5.5.34, v6.x anterior a v6.0.33, y v7.x anterior a v7.0.12 no comprueba valores qop, lo que puede permitir a ... • http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00002.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 4.3EPSS: 3%CPEs: 77EXPL: 0CVE-2011-5063 – tomcat: Multiple weaknesses in HTTP DIGEST authentication
https://notcve.org/view.php?id=CVE-2011-5063
14 Jan 2012 — The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not check realm values, which might allow remote attackers to bypass intended access restrictions by leveraging the availability of a protection space with weaker authentication or authorization requirements, a different vulnerability than CVE-2011-1184. La implementación HTTP Digest Access Authentication en Apache Tomcat v5.5.x anterior a v5.5.34, v6.x anterior a v6.0.33,... • http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00002.html • CWE-287: Improper Authentication •
CVSS: 4.3EPSS: 6%CPEs: 77EXPL: 0CVE-2011-5064 – tomcat: Multiple weaknesses in HTTP DIGEST authentication
https://notcve.org/view.php?id=CVE-2011-5064
14 Jan 2012 — DigestAuthenticator.java in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 uses Catalina as the hard-coded server secret (aka private key), which makes it easier for remote attackers to bypass cryptographic protection mechanisms by leveraging knowledge of this string, a different vulnerability than CVE-2011-1184. DigestAuthenticator.java en la implementación HTTP Digest Access Authentication en Apache Tomcat v5.5.x anterior... • http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00002.html • CWE-310: Cryptographic Issues •
CVSS: 5.3EPSS: 73%CPEs: 59EXPL: 2CVE-2011-4858 – MyBulletinBoard (MyBB) 1.1.5 - 'CLIENT-IP' SQL Injection
https://notcve.org/view.php?id=CVE-2011-4858
05 Jan 2012 — Apache Tomcat before 5.5.35, 6.x before 6.0.35, and 7.x before 7.0.23 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters. Apache Tomcat antes de v5.5.35, v6.x antes de v6.0.35 y v7.x antes de v7.0.23 calcula los valores hash de los parámetros de los formularios, sin restringir la capacidad de desencadenar colisiones de hash de forma pre... • https://packetstorm.news/files/id/180523 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 85EXPL: 1CVE-2011-3190 – tomcat: authentication bypass and information disclosure
https://notcve.org/view.php?id=CVE-2011-3190
31 Aug 2011 — Certain AJP protocol connector implementations in Apache Tomcat 7.0.0 through 7.0.20, 6.0.0 through 6.0.33, 5.5.0 through 5.5.33, and possibly other versions allow remote attackers to spoof AJP requests, bypass authentication, and obtain sensitive information by causing the connector to interpret a request body as a new request. Algunas implementaciones del conector del protocolo AJP en Apache Tomcat v7.0.0 a v7.0.20, v6.0.0 a v6.0.33, v5.5.0 a v5.5.33, y posiblemente con otras versiones, permiten a atacant... • http://marc.info/?l=bugtraq&m=132215163318824&w=2 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.1EPSS: 8%CPEs: 39EXPL: 0CVE-2011-2729 – jakarta-commons-daemon: jsvc does not drop capabilities allowing access to files and directories owned by the superuser
https://notcve.org/view.php?id=CVE-2011-2729
15 Aug 2011 — native/unix/native/jsvc-unix.c in jsvc in the Daemon component 1.0.3 through 1.0.6 in Apache Commons, as used in Apache Tomcat 5.5.32 through 5.5.33, 6.0.30 through 6.0.32, and 7.0.x before 7.0.20 on Linux, does not drop capabilities, which allows remote attackers to bypass read permissions for files via a request to an application. native/unix/native/jsvc-unix.c en jsvc en el componente Daemon v1.0.3 hasta v1.0.6 en Apache Commons, usado en Apache Tomcat v5.5.32 hasta v5.5.33, v6.0.30 hasta v6.0.32, y v7.0... • http://lists.opensuse.org/opensuse-security-announce/2011-09/msg00024.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.3EPSS: 0%CPEs: 80EXPL: 0CVE-2011-2526 – tomcat: security manager restrictions bypass
https://notcve.org/view.php?id=CVE-2011-2526
14 Jul 2011 — Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.19, when sendfile is enabled for the HTTP APR or HTTP NIO connector, does not validate certain request attributes, which allows local users to bypass intended file access restrictions or cause a denial of service (infinite loop or JVM crash) by leveraging an untrusted web application. Apache Tomcat v5.5.x anterior a v5.5.34, v6.x anterior a v6.0.33, y v7.x anterior a v7.0.19, cuando sendfile está habilitado para el conector HTTP APR o ... • http://marc.info/?l=bugtraq&m=132215163318824&w=2 • CWE-20: Improper Input Validation •