Oval Definition:	oval:com.ubuntu.precise:def:20155345000
Revision Date: 2016-02-24 Version: 1 Title: CVE-2015-5345 on Ubuntu 12.04 LTS (precise) - low. Description: The Mapper component in Apache Tomcat 6.x before 6.0.45, 7.x before 7.0.68, 8.x before 8.0.30, and 9.x before 9.0.0.M2 processes redirects before considering security constraints and Filters, which allows remote attackers to determine the existence of a directory via a URL that lacks a trailing / (slash) character. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-5345 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'tomcat6' package in precise was vulnerable but has been fixed (note: '6.0.35-1ubuntu3.7'). OR The 'tomcat7' package in precise is affected and needs fixing.
BACK