Test Kennung:	1.3.6.1.4.1.25623.1.0.803780
Kategorie:	Web Servers
Titel:	Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability
Zusammenfassung:	This host is running Apache Tomcat and is prone to information disclosure; vulnerability.
Beschreibung:	Summary: This host is running Apache Tomcat and is prone to information disclosure vulnerability. Vulnerability Insight: The flaw is due to an improper handling of HTTP pipelining. A remote attacker could exploit this vulnerability to read responses intended for another user and obtain sensitive information. Vulnerability Impact: Successful exploitation will allow remote attackers to obtain sensitive information that may aid in further attacks. Affected Software/OS: Apache Tomcat version 7.0.x before 7.0.12. Solution: Upgrade Apache Tomcat version to 7.0.12 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	BugTraq ID: 47199 Common Vulnerability Exposure (CVE) ID: CVE-2011-1475 http://www.securityfocus.com/bid/47199 Bugtraq: 20110406 [SECURITY] CVE-2011-1475 Apache Tomcat information disclosure (Google Search) http://www.securityfocus.com/archive/1/517363 http://seclists.org/fulldisclosure/2011/Apr/97 https://issues.apache.org/bugzilla/show_bug.cgi?id=50957 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12374 http://www.securitytracker.com/id?1025303 http://securityreason.com/securityalert/8188 http://www.vupen.com/english/advisories/2011/0894 XForce ISS Database: tomcat-httpbio-info-disclosure(66676) https://exchange.xforce.ibmcloud.com/vulnerabilities/66676
Copyright	Copyright (C) 2013 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.