Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2007-3382

Опубликовано: 14 авг. 2007
Источник: ubuntu
Приоритет: untriaged
CVSS2: 4.3

Описание

Apache Tomcat 6.0.0 to 6.0.13, 5.5.0 to 5.5.24, 5.0.0 to 5.0.30, 4.1.0 to 4.1.36, and 3.3 to 3.3.2 treats single quotes ("'") as delimiters in cookies, which might cause sensitive information such as session IDs to be leaked and allow remote attackers to conduct session hijacking attacks.

РелизСтатусПримечание
dapper

ignored

end of life
devel

DNE

edgy

ignored

end of life, was needed
feisty

ignored

end of life, was needed
gutsy

DNE

hardy

DNE

intrepid

DNE

jaunty

DNE

karmic

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
dapper

DNE

devel

DNE

edgy

ignored

end of life, was needed
feisty

ignored

end of life, was needed
gutsy

released

5.5.25-1
hardy

released

5.5.25-1
intrepid

released

5.5.25-1
jaunty

released

5.5.25-1
karmic

DNE

upstream

released

5.5.25

Показывать по

Ссылки на источники

4.3 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2007-3382

redhat
почти 18 лет назад

Apache Tomcat 6.0.0 to 6.0.13, 5.5.0 to 5.5.24, 5.0.0 to 5.0.30, 4.1.0 to 4.1.36, and 3.3 to 3.3.2 treats single quotes ("'") as delimiters in cookies, which might cause sensitive information such as session IDs to be leaked and allow remote attackers to conduct session hijacking attacks.

nvd логотип

CVE-2007-3382

nvd
почти 18 лет назад

Apache Tomcat 6.0.0 to 6.0.13, 5.5.0 to 5.5.24, 5.0.0 to 5.0.30, 4.1.0 to 4.1.36, and 3.3 to 3.3.2 treats single quotes ("'") as delimiters in cookies, which might cause sensitive information such as session IDs to be leaked and allow remote attackers to conduct session hijacking attacks.

debian логотип

CVE-2007-3382

debian
почти 18 лет назад

Apache Tomcat 6.0.0 to 6.0.13, 5.5.0 to 5.5.24, 5.0.0 to 5.0.30, 4.1.0 ...

github логотип

GHSA-qff8-g48j-pwpw

github
около 3 лет назад

Apache Tomcat treats single quotes as delimiters in cookies

oracle-oval логотип

ELSA-2007-0871

oracle-oval
больше 17 лет назад

ELSA-2007-0871: Moderate: tomcat security update (MODERATE)

4.3 Medium

CVSS2

Уязвимость CVE-2007-3382