VulnerableCode Package Details - pkg:rpm/redhat/tomcat6@6.0.35-29_patch

Search for packages

Vulnerability	Summary	Fixed by
VCID-12du-1vyt-bkgx Aliases: CVE-2012-5887 GHSA-28cq-6rmx-pjq4	Improper Authentication in Apache Tomcat The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.36, 6.x before 6.0.36, and 7.x before 7.0.30 does not properly check for stale nonce values in conjunction with enforcement of proper credentials, which makes it easier for remote attackers to bypass intended access restrictions by sniffing the network for valid requests.	There are no reported fixed by versions.
VCID-g7eg-s99s-xqe7 Aliases: CVE-2012-5886 GHSA-9xrj-439h-62hg	Improper Authentication in Apache Tomcat The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.36, 6.x before 6.0.36, and 7.x before 7.0.30 caches information about the authenticated user within the session state, which makes it easier for remote attackers to bypass authentication via vectors related to the session ID.	There are no reported fixed by versions.
VCID-mwk8-b5c9-kbb9 Aliases: CVE-2012-4534	org/apache/tomcat/util/net/NioEndpoint.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.28, when the NIO connector is used in conjunction with sendfile and HTTPS, allows remote attackers to cause a denial of service (infinite loop) by terminating the connection during the reading of a response.	There are no reported fixed by versions.
VCID-r5rc-rdd9-bfbk Aliases: CVE-2012-5885 GHSA-99rf-92v6-cwx4	Improper Access Control in Apache Tomcat The replay-countermeasure functionality in the HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.36, 6.x before 6.0.36, and 7.x before 7.0.30 tracks cnonce (aka client nonce) values instead of nonce (aka server nonce) and nc (aka nonce-count) values, which makes it easier for remote attackers to bypass intended access restrictions by sniffing the network for valid requests, a different vulnerability than CVE-2011-1184.	There are no reported fixed by versions.
VCID-ta1m-dh8x-nubc Aliases: CVE-2012-4431 GHSA-76vr-72mv-mf3q	org/apache/catalina/filters/CsrfPreventionFilter.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.32 allows remote attackers to bypass the cross-site request forgery (CSRF) protection mechanism via a request that lacks a session identifier.	There are no reported fixed by versions.
VCID-vd1s-m27a-8ucc Aliases: CVE-2012-2733	java/org/apache/coyote/http11/InternalNioInputBuffer.java in the HTTP NIO connector in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.28 does not properly restrict the request-header size, which allows remote attackers to cause a denial of service (memory consumption) via a large amount of header data.	There are no reported fixed by versions.

Vulnerability

Summary

Fixed by

VCID-12du-1vyt-bkgx
Aliases:
CVE-2012-5887
GHSA-28cq-6rmx-pjq4

Improper Authentication in Apache Tomcat The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.36, 6.x before 6.0.36, and 7.x before 7.0.30 does not properly check for stale nonce values in conjunction with enforcement of proper credentials, which makes it easier for remote attackers to bypass intended access restrictions by sniffing the network for valid requests.