Oval Definition:oval:com.redhat.rhsa:def:20070871
Revision Date:2007-09-26Version:638
Title:RHSA-2007:0871: tomcat security update (Moderate)
Description:Tomcat is a servlet container for Java Servlet and Java Server Pages technologies.

Tomcat was found treating single quote characters -- ' -- as delimiters in cookies. This could allow remote attackers to obtain sensitive information, such as session IDs, for session hijacking attacks (CVE-2007-3382).

It was reported Tomcat did not properly handle the following character sequence in a cookie: \" (a backslash followed by a double-quote). It was possible remote attackers could use this failure to obtain sensitive information, such as session IDs, for session hijacking attacks (CVE-2007-3385).

A cross-site scripting (XSS) vulnerability existed in the Host Manager Servlet. This allowed remote attackers to inject arbitrary HTML and web script via crafted requests (CVE-2007-3386).

Users of Tomcat should update to these erratum packages, which contain backported patches and are not vulnerable to these issues.
Family:unixClass:patch
Status:Reference(s):CVE-2007-3382
CVE-2007-3385
CVE-2007-3386
RHSA-2007:0871
RHSA-2007:0871-01
RHSA-2007:0871-01
Platform(s):Red Hat Enterprise Linux 5
Product(s):
Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 5 is installed
  • AND
  • tomcat5 is earlier than 0:5.5.23-0jpp.3.0.2.el5
  • AND tomcat5 is signed with Red Hat redhatrelease2 key
  • tomcat5-admin-webapps is earlier than 0:5.5.23-0jpp.3.0.2.el5
  • AND tomcat5-admin-webapps is signed with Red Hat redhatrelease2 key
  • tomcat5-common-lib is earlier than 0:5.5.23-0jpp.3.0.2.el5
  • AND tomcat5-common-lib is signed with Red Hat redhatrelease2 key
  • tomcat5-jasper is earlier than 0:5.5.23-0jpp.3.0.2.el5
  • AND tomcat5-jasper is signed with Red Hat redhatrelease2 key
  • tomcat5-jasper-javadoc is earlier than 0:5.5.23-0jpp.3.0.2.el5
  • AND tomcat5-jasper-javadoc is signed with Red Hat redhatrelease2 key
  • tomcat5-jsp-2.0-api is earlier than 0:5.5.23-0jpp.3.0.2.el5
  • AND tomcat5-jsp-2.0-api is signed with Red Hat redhatrelease2 key
  • tomcat5-jsp-2.0-api-javadoc is earlier than 0:5.5.23-0jpp.3.0.2.el5
  • AND tomcat5-jsp-2.0-api-javadoc is signed with Red Hat redhatrelease2 key
  • tomcat5-server-lib is earlier than 0:5.5.23-0jpp.3.0.2.el5
  • AND tomcat5-server-lib is signed with Red Hat redhatrelease2 key
  • tomcat5-servlet-2.4-api is earlier than 0:5.5.23-0jpp.3.0.2.el5
  • AND tomcat5-servlet-2.4-api is signed with Red Hat redhatrelease2 key
  • tomcat5-servlet-2.4-api-javadoc is earlier than 0:5.5.23-0jpp.3.0.2.el5
  • AND tomcat5-servlet-2.4-api-javadoc is signed with Red Hat redhatrelease2 key
  • tomcat5-webapps is earlier than 0:5.5.23-0jpp.3.0.2.el5
  • AND tomcat5-webapps is signed with Red Hat redhatrelease2 key
    • BACK