Gravedad: Medio
  Identificadores de CVE : CVE-2007-3382
  Fecha recomendada: 15 de octubre de 2015

  Descripción

Apache Tomcat 6.0.0 to 6.0.13, 5.5.0 to 5.5.24, 5.0.0 to 5.0.30, 4.1.0 to 4.1.36, and 3.3 to 3.3.2 treats single quotes ("'") as delimiters in cookies, which might cause sensitive information such as session IDs to be leaked and allow remote attackers to conduct session hijacking attacks.

  Revelación de la información

  • 1001108 - Apache Tomcat Cookie Handling Single Quotes Vulnerability

  Soluciones

  Trend Micro Deep Security DPI Rule Number: 1001108
  Trend Micro Deep Security DPI Rule Name: 1001108 - Apache Tomcat Cookie Handling Single Quotes Vulnerability

  Software y versión afectados

  • Apache Software Foundation Tomcat 3.3
  • Apache Software Foundation Tomcat 3.3.1
  • Apache Software Foundation Tomcat 3.3.1a
  • Apache Software Foundation Tomcat 3.3.2
  • Apache Software Foundation Tomcat 4.1.0
  • Apache Software Foundation Tomcat 4.1.1
  • Apache Software Foundation Tomcat 4.1.10
  • Apache Software Foundation Tomcat 4.1.15
  • Apache Software Foundation Tomcat 4.1.2
  • Apache Software Foundation Tomcat 4.1.24
  • Apache Software Foundation Tomcat 4.1.28
  • Apache Software Foundation Tomcat 4.1.3
  • Apache Software Foundation Tomcat 4.1.3 beta
  • Apache Software Foundation Tomcat 4.1.31
  • Apache Software Foundation Tomcat 4.1.36
  • Apache Software Foundation Tomcat 4.1.9 beta
  • Apache Software Foundation Tomcat 5.0.0
  • Apache Software Foundation Tomcat 5.0.1
  • Apache Software Foundation Tomcat 5.0.10
  • Apache Software Foundation Tomcat 5.0.11
  • Apache Software Foundation Tomcat 5.0.12
  • Apache Software Foundation Tomcat 5.0.13
  • Apache Software Foundation Tomcat 5.0.14
  • Apache Software Foundation Tomcat 5.0.15
  • Apache Software Foundation Tomcat 5.0.16
  • Apache Software Foundation Tomcat 5.0.17
  • Apache Software Foundation Tomcat 5.0.18
  • Apache Software Foundation Tomcat 5.0.19
  • Apache Software Foundation Tomcat 5.0.2
  • Apache Software Foundation Tomcat 5.0.21
  • Apache Software Foundation Tomcat 5.0.22
  • Apache Software Foundation Tomcat 5.0.23
  • Apache Software Foundation Tomcat 5.0.24
  • Apache Software Foundation Tomcat 5.0.25
  • Apache Software Foundation Tomcat 5.0.26
  • Apache Software Foundation Tomcat 5.0.27
  • Apache Software Foundation Tomcat 5.0.28
  • Apache Software Foundation Tomcat 5.0.29
  • Apache Software Foundation Tomcat 5.0.3
  • Apache Software Foundation Tomcat 5.0.30
  • Apache Software Foundation Tomcat 5.0.4
  • Apache Software Foundation Tomcat 5.0.5
  • Apache Software Foundation Tomcat 5.0.6
  • Apache Software Foundation Tomcat 5.0.7
  • Apache Software Foundation Tomcat 5.0.8
  • Apache Software Foundation Tomcat 5.0.9
  • Apache Software Foundation Tomcat 5.5.0
  • Apache Software Foundation Tomcat 5.5.1
  • Apache Software Foundation Tomcat 5.5.10
  • Apache Software Foundation Tomcat 5.5.11
  • Apache Software Foundation Tomcat 5.5.12
  • Apache Software Foundation Tomcat 5.5.13
  • Apache Software Foundation Tomcat 5.5.14
  • Apache Software Foundation Tomcat 5.5.15
  • Apache Software Foundation Tomcat 5.5.16
  • Apache Software Foundation Tomcat 5.5.17
  • Apache Software Foundation Tomcat 5.5.18
  • Apache Software Foundation Tomcat 5.5.19
  • Apache Software Foundation Tomcat 5.5.2
  • Apache Software Foundation Tomcat 5.5.20
  • Apache Software Foundation Tomcat 5.5.21
  • Apache Software Foundation Tomcat 5.5.22
  • Apache Software Foundation Tomcat 5.5.23
  • Apache Software Foundation Tomcat 5.5.24
  • Apache Software Foundation Tomcat 5.5.3
  • Apache Software Foundation Tomcat 5.5.4
  • Apache Software Foundation Tomcat 5.5.5
  • Apache Software Foundation Tomcat 5.5.6
  • Apache Software Foundation Tomcat 5.5.7
  • Apache Software Foundation Tomcat 5.5.8
  • Apache Software Foundation Tomcat 5.5.9
  • Apache Software Foundation Tomcat 6.0.0
  • Apache Software Foundation Tomcat 6.0.1
  • Apache Software Foundation Tomcat 6.0.10
  • Apache Software Foundation Tomcat 6.0.11
  • Apache Software Foundation Tomcat 6.0.12
  • Apache Software Foundation Tomcat 6.0.13
  • Apache Software Foundation Tomcat 6.0.2
  • Apache Software Foundation Tomcat 6.0.3
  • Apache Software Foundation Tomcat 6.0.4
  • Apache Software Foundation Tomcat 6.0.5
  • Apache Software Foundation Tomcat 6.0.6
  • Apache Software Foundation Tomcat 6.0.7
  • Apache Software Foundation Tomcat 6.0.8
  • Apache Software Foundation Tomcat 6.0.9