Oval Definition:oval:org.opensuse.security:def:20111184
Revision Date:2022-05-20Version:1
Title:CVE-2011-1184
Description:

The HTTP Digest Access Authentication implementation in Apache Tomcat 5.5.x before 5.5.34, 6.x before 6.0.33, and 7.x before 7.0.12 does not have the expected countermeasures against replay attacks, which makes it easier for remote attackers to bypass intended access restrictions by sniffing the network for valid requests, related to lack of checking of nonce (aka server nonce) and nc (aka nonce-count or client nonce count) values.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2011-1184
Mitre CVE-2011-1184
SUSE CVE-2011-1184
openSUSE-SU-2012:0208-1
openSUSE-SU-2012:0208-1
SUSE-SU-2012:0155-1
SUSE-SU-2012:0155-1
Platform(s):openSUSE 11.4
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for Teradata
SUSE Linux Enterprise Server 11 SP1 for VMware
SUSE Linux Enterprise Server 11 SP1-TERADATA
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA
SUSE Manager 1.2 for SLE 11 SP1
Product(s):
Definition Synopsis
  • Release Information
  • sles11-sp1 is installed
  • AND
  • tomcat6-admin-webapps less than 6.0.18-20.35.36.1
  • OR tomcat6-docs-webapp less than 6.0.18-20.35.36.1
  • OR tomcat6-javadoc less than 6.0.18-20.35.36.1
  • OR tomcat6-jsp-2_1-api less than 6.0.18-20.35.36.1
  • OR tomcat6-lib less than 6.0.18-20.35.36.1
  • OR tomcat6-servlet-2_5-api less than 6.0.18-20.35.36.1
  • OR tomcat6-webapps less than 6.0.18-20.35.36.1
  • OR tomcat6 less than 6.0.18-20.35.36.1
  • OR Package Information
  • suse114 is installed
  • AND
  • tomcat6-admin-webapps less than 6.0.32-7.14.1
  • OR tomcat6-docs-webapp less than 6.0.32-7.14.1
  • OR tomcat6-el-1_0-api less than 6.0.32-7.14.1
  • OR tomcat6-javadoc less than 6.0.32-7.14.1
  • OR tomcat6-jsp-2_1-api less than 6.0.32-7.14.1
  • OR tomcat6-lib less than 6.0.32-7.14.1
  • OR tomcat6-servlet-2_5-api less than 6.0.32-7.14.1
  • OR tomcat6-webapps less than 6.0.32-7.14.1
  • OR tomcat6 less than 6.0.32-7.14.1
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • tomcat6-6.0.18-20.35.36.1 is installed
  • OR tomcat6-admin-webapps-6.0.18-20.35.36.1 is installed
  • OR tomcat6-docs-webapp-6.0.18-20.35.36.1 is installed
  • OR tomcat6-javadoc-6.0.18-20.35.36.1 is installed
  • OR tomcat6-jsp-2_1-api-6.0.18-20.35.36.1 is installed
  • OR tomcat6-lib-6.0.18-20.35.36.1 is installed
  • OR tomcat6-servlet-2_5-api-6.0.18-20.35.36.1 is installed
  • OR tomcat6-webapps-6.0.18-20.35.36.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • tomcat6-6.0.18-20.35.40.1 is installed
  • OR tomcat6-admin-webapps-6.0.18-20.35.40.1 is installed
  • OR tomcat6-docs-webapp-6.0.18-20.35.40.1 is installed
  • OR tomcat6-javadoc-6.0.18-20.35.40.1 is installed
  • OR tomcat6-jsp-2_1-api-6.0.18-20.35.40.1 is installed
  • OR tomcat6-lib-6.0.18-20.35.40.1 is installed
  • OR tomcat6-servlet-2_5-api-6.0.18-20.35.40.1 is installed
  • OR tomcat6-webapps-6.0.18-20.35.40.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • tomcat6-6.0.41-0.43.1 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43.1 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43.1 is installed
  • OR tomcat6-javadoc-6.0.41-0.43.1 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43.1 is installed
  • OR tomcat6-lib-6.0.41-0.43.1 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43.1 is installed
  • OR tomcat6-webapps-6.0.41-0.43.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • tomcat6-6.0.18-20.35.40.1 is installed
  • OR tomcat6-admin-webapps-6.0.18-20.35.40.1 is installed
  • OR tomcat6-docs-webapp-6.0.18-20.35.40.1 is installed
  • OR tomcat6-javadoc-6.0.18-20.35.40.1 is installed
  • OR tomcat6-jsp-2_1-api-6.0.18-20.35.40.1 is installed
  • OR tomcat6-lib-6.0.18-20.35.40.1 is installed
  • OR tomcat6-servlet-2_5-api-6.0.18-20.35.40.1 is installed
  • OR tomcat6-webapps-6.0.18-20.35.40.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • tomcat6-6.0.41-0.43.1 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43.1 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43.1 is installed
  • OR tomcat6-javadoc-6.0.41-0.43.1 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43.1 is installed
  • OR tomcat6-lib-6.0.41-0.43.1 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43.1 is installed
  • OR tomcat6-webapps-6.0.41-0.43.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • tomcat6-6.0.18-20.35.40 is installed
  • OR tomcat6-admin-webapps-6.0.18-20.35.40 is installed
  • OR tomcat6-docs-webapp-6.0.18-20.35.40 is installed
  • OR tomcat6-javadoc-6.0.18-20.35.40 is installed
  • OR tomcat6-jsp-2_1-api-6.0.18-20.35.40 is installed
  • OR tomcat6-lib-6.0.18-20.35.40 is installed
  • OR tomcat6-servlet-2_5-api-6.0.18-20.35.40 is installed
  • OR tomcat6-webapps-6.0.18-20.35.40 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • tomcat6-6.0.18-20.35.36 is installed
  • OR tomcat6-admin-webapps-6.0.18-20.35.36 is installed
  • OR tomcat6-docs-webapp-6.0.18-20.35.36 is installed
  • OR tomcat6-javadoc-6.0.18-20.35.36 is installed
  • OR tomcat6-jsp-2_1-api-6.0.18-20.35.36 is installed
  • OR tomcat6-lib-6.0.18-20.35.36 is installed
  • OR tomcat6-servlet-2_5-api-6.0.18-20.35.36 is installed
  • OR tomcat6-webapps-6.0.18-20.35.36 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • tomcat6-6.0.18-20.35.40 is installed
  • OR tomcat6-admin-webapps-6.0.18-20.35.40 is installed
  • OR tomcat6-docs-webapp-6.0.18-20.35.40 is installed
  • OR tomcat6-javadoc-6.0.18-20.35.40 is installed
  • OR tomcat6-jsp-2_1-api-6.0.18-20.35.40 is installed
  • OR tomcat6-lib-6.0.18-20.35.40 is installed
  • OR tomcat6-servlet-2_5-api-6.0.18-20.35.40 is installed
  • OR tomcat6-webapps-6.0.18-20.35.40 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • tomcat6-6.0.41-0.43 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43 is installed
  • OR tomcat6-javadoc-6.0.41-0.43 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43 is installed
  • OR tomcat6-lib-6.0.41-0.43 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43 is installed
  • OR tomcat6-webapps-6.0.41-0.43 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server 11 SP2 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed
  • AND
  • tomcat6-6.0.18-20.35.36 is installed
  • OR tomcat6-admin-webapps-6.0.18-20.35.36 is installed
  • OR tomcat6-docs-webapp-6.0.18-20.35.36 is installed
  • OR tomcat6-javadoc-6.0.18-20.35.36 is installed
  • OR tomcat6-jsp-2_1-api-6.0.18-20.35.36 is installed
  • OR tomcat6-lib-6.0.18-20.35.36 is installed
  • OR tomcat6-servlet-2_5-api-6.0.18-20.35.36 is installed
  • OR tomcat6-webapps-6.0.18-20.35.36 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • tomcat6-6.0.18-20.35.40 is installed
  • OR tomcat6-admin-webapps-6.0.18-20.35.40 is installed
  • OR tomcat6-docs-webapp-6.0.18-20.35.40 is installed
  • OR tomcat6-javadoc-6.0.18-20.35.40 is installed
  • OR tomcat6-jsp-2_1-api-6.0.18-20.35.40 is installed
  • OR tomcat6-lib-6.0.18-20.35.40 is installed
  • OR tomcat6-servlet-2_5-api-6.0.18-20.35.40 is installed
  • OR tomcat6-webapps-6.0.18-20.35.40 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • tomcat6-6.0.41-0.43 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43 is installed
  • OR tomcat6-javadoc-6.0.41-0.43 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43 is installed
  • OR tomcat6-lib-6.0.41-0.43 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43 is installed
  • OR tomcat6-webapps-6.0.41-0.43 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • tomcat6-6.0.18-20.35.36.1 is installed
  • OR tomcat6-admin-webapps-6.0.18-20.35.36.1 is installed
  • OR tomcat6-docs-webapp-6.0.18-20.35.36.1 is installed
  • OR tomcat6-javadoc-6.0.18-20.35.36.1 is installed
  • OR tomcat6-jsp-2_1-api-6.0.18-20.35.36.1 is installed
  • OR tomcat6-lib-6.0.18-20.35.36.1 is installed
  • OR tomcat6-servlet-2_5-api-6.0.18-20.35.36.1 is installed
  • OR tomcat6-webapps-6.0.18-20.35.36.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • tomcat6-6.0.18-20.35.40.1 is installed
  • OR tomcat6-admin-webapps-6.0.18-20.35.40.1 is installed
  • OR tomcat6-docs-webapp-6.0.18-20.35.40.1 is installed
  • OR tomcat6-javadoc-6.0.18-20.35.40.1 is installed
  • OR tomcat6-jsp-2_1-api-6.0.18-20.35.40.1 is installed
  • OR tomcat6-lib-6.0.18-20.35.40.1 is installed
  • OR tomcat6-servlet-2_5-api-6.0.18-20.35.40.1 is installed
  • OR tomcat6-webapps-6.0.18-20.35.40.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • tomcat6-6.0.41-0.43.1 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43.1 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43.1 is installed
  • OR tomcat6-javadoc-6.0.41-0.43.1 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43.1 is installed
  • OR tomcat6-lib-6.0.41-0.43.1 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43.1 is installed
  • OR tomcat6-webapps-6.0.41-0.43.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • OR SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • AND
  • tomcat6-6.0.18-20.35.36.1 is installed
  • OR tomcat6-admin-webapps-6.0.18-20.35.36.1 is installed
  • OR tomcat6-docs-webapp-6.0.18-20.35.36.1 is installed
  • OR tomcat6-javadoc-6.0.18-20.35.36.1 is installed
  • OR tomcat6-jsp-2_1-api-6.0.18-20.35.36.1 is installed
  • OR tomcat6-lib-6.0.18-20.35.36.1 is installed
  • OR tomcat6-servlet-2_5-api-6.0.18-20.35.36.1 is installed
  • OR tomcat6-webapps-6.0.18-20.35.36.1 is installed
    • BACK