Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2007-3382

Опубликовано: 14 авг. 2007
Источник: debian

Описание

Apache Tomcat 6.0.0 to 6.0.13, 5.5.0 to 5.5.24, 5.0.0 to 5.0.30, 4.1.0 to 4.1.36, and 3.3 to 3.3.2 treats single quotes ("'") as delimiters in cookies, which might cause sensitive information such as session IDs to be leaked and allow remote attackers to conduct session hijacking attacks.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
tomcat5.5fixed5.5.25-1package
tomcat5removedpackage

Связанные уязвимости

ubuntu логотип

CVE-2007-3382

ubuntu
почти 18 лет назад

Apache Tomcat 6.0.0 to 6.0.13, 5.5.0 to 5.5.24, 5.0.0 to 5.0.30, 4.1.0 to 4.1.36, and 3.3 to 3.3.2 treats single quotes ("'") as delimiters in cookies, which might cause sensitive information such as session IDs to be leaked and allow remote attackers to conduct session hijacking attacks.

redhat логотип

CVE-2007-3382

redhat
почти 18 лет назад

Apache Tomcat 6.0.0 to 6.0.13, 5.5.0 to 5.5.24, 5.0.0 to 5.0.30, 4.1.0 to 4.1.36, and 3.3 to 3.3.2 treats single quotes ("'") as delimiters in cookies, which might cause sensitive information such as session IDs to be leaked and allow remote attackers to conduct session hijacking attacks.

nvd логотип

CVE-2007-3382

nvd
почти 18 лет назад

Apache Tomcat 6.0.0 to 6.0.13, 5.5.0 to 5.5.24, 5.0.0 to 5.0.30, 4.1.0 to 4.1.36, and 3.3 to 3.3.2 treats single quotes ("'") as delimiters in cookies, which might cause sensitive information such as session IDs to be leaked and allow remote attackers to conduct session hijacking attacks.

github логотип

GHSA-qff8-g48j-pwpw

github
около 3 лет назад

Apache Tomcat treats single quotes as delimiters in cookies

oracle-oval логотип

ELSA-2007-0871

oracle-oval
больше 17 лет назад

ELSA-2007-0871: Moderate: tomcat security update (MODERATE)