Oval Definition:oval:org.opensuse.security:def:20140096
Revision Date:2022-05-20Version:1
Title:CVE-2014-0096
Description:

java/org/apache/catalina/servlets/DefaultServlet.java in the default servlet in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 does not properly restrict XSLT stylesheets, which allows remote attackers to bypass security-manager restrictions and read arbitrary files via a crafted web application that provides an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2014-0096
Mitre CVE-2014-0096
SUSE CVE-2014-0096
SUSE-SU-2014:1015-1
SUSE-SU-2014:1015-1
TID7010166
Platform(s):SUSE Linux Enterprise Server 11 SP1 for Teradata
SUSE Linux Enterprise Server 11 SP1-TERADATA
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3 for VMware
SUSE Linux Enterprise Server 11 SP3-TERADATA
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA
SUSE Linux Enterprise Server for SAP Applications 11 SP3
SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA
SUSE Linux Enterprise Server for VMWare 11 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • libtcnative-1-0-1.3.3-12.2 is installed
  • OR tomcat6-6.0.41-0.43 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43 is installed
  • OR tomcat6-javadoc-6.0.41-0.43 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43 is installed
  • OR tomcat6-lib-6.0.41-0.43 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43 is installed
  • OR tomcat6-webapps-6.0.41-0.43 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • libtcnative-1-0-1.3.3-12.2 is installed
  • OR tomcat6-6.0.41-0.43 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43 is installed
  • OR tomcat6-javadoc-6.0.41-0.43 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43 is installed
  • OR tomcat6-lib-6.0.41-0.43 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43 is installed
  • OR tomcat6-webapps-6.0.41-0.43 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • tomcat6-6.0.41-0.43 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43 is installed
  • OR tomcat6-javadoc-6.0.41-0.43 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43 is installed
  • OR tomcat6-lib-6.0.41-0.43 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43 is installed
  • OR tomcat6-webapps-6.0.41-0.43 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • libtcnative-1-0-1.3.3-12.2 is installed
  • OR tomcat6-6.0.41-0.43 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43 is installed
  • OR tomcat6-javadoc-6.0.41-0.43 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43 is installed
  • OR tomcat6-lib-6.0.41-0.43 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43 is installed
  • OR tomcat6-webapps-6.0.41-0.43 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • libtcnative-1-0-1.3.3-12.2.1 is installed
  • OR tomcat6-6.0.41-0.43.1 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43.1 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43.1 is installed
  • OR tomcat6-javadoc-6.0.41-0.43.1 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43.1 is installed
  • OR tomcat6-lib-6.0.41-0.43.1 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43.1 is installed
  • OR tomcat6-webapps-6.0.41-0.43.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • libtcnative-1-0-1.3.3-12.2.1 is installed
  • OR tomcat6-6.0.41-0.43.1 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43.1 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43.1 is installed
  • OR tomcat6-javadoc-6.0.41-0.43.1 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43.1 is installed
  • OR tomcat6-lib-6.0.41-0.43.1 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43.1 is installed
  • OR tomcat6-webapps-6.0.41-0.43.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • tomcat6-6.0.41-0.43 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43 is installed
  • OR tomcat6-javadoc-6.0.41-0.43 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43 is installed
  • OR tomcat6-lib-6.0.41-0.43 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43 is installed
  • OR tomcat6-webapps-6.0.41-0.43 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP3 is installed
  • OR SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • libtcnative-1-0-1.3.3-12.2 is installed
  • OR tomcat6-6.0.41-0.43 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43 is installed
  • OR tomcat6-javadoc-6.0.41-0.43 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43 is installed
  • OR tomcat6-lib-6.0.41-0.43 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43 is installed
  • OR tomcat6-webapps-6.0.41-0.43 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • tomcat6-6.0.41-0.43 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43 is installed
  • OR tomcat6-javadoc-6.0.41-0.43 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43 is installed
  • OR tomcat6-lib-6.0.41-0.43 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43 is installed
  • OR tomcat6-webapps-6.0.41-0.43 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server 11 SP3 is installed
  • OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA is installed
  • OR SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • libtcnative-1-0-1.3.3-12.2 is installed
  • OR tomcat6-6.0.41-0.43 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43 is installed
  • OR tomcat6-javadoc-6.0.41-0.43 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43 is installed
  • OR tomcat6-lib-6.0.41-0.43 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43 is installed
  • OR tomcat6-webapps-6.0.41-0.43 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed
  • AND Package Information
  • libtcnative-1-0-1.3.3-12.2 is installed
  • OR tomcat6-6.0.41-0.43 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43 is installed
  • OR tomcat6-javadoc-6.0.41-0.43 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43 is installed
  • OR tomcat6-lib-6.0.41-0.43 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43 is installed
  • OR tomcat6-webapps-6.0.41-0.43 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • tomcat6-6.0.41-0.43.1 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43.1 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43.1 is installed
  • OR tomcat6-javadoc-6.0.41-0.43.1 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43.1 is installed
  • OR tomcat6-lib-6.0.41-0.43.1 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43.1 is installed
  • OR tomcat6-webapps-6.0.41-0.43.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1-TERADATA is installed
  • AND
  • libtcnative-1-0-1.3.3-12.2.1 is installed
  • OR tomcat6-6.0.41-0.43.1 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43.1 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43.1 is installed
  • OR tomcat6-javadoc-6.0.41-0.43.1 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43.1 is installed
  • OR tomcat6-lib-6.0.41-0.43.1 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43.1 is installed
  • OR tomcat6-webapps-6.0.41-0.43.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 SP3 is installed
  • AND
  • libtcnative-1-0-1.3.3-12.2.1 is installed
  • OR tomcat6-6.0.41-0.43.1 is installed
  • OR tomcat6-admin-webapps-6.0.41-0.43.1 is installed
  • OR tomcat6-docs-webapp-6.0.41-0.43.1 is installed
  • OR tomcat6-javadoc-6.0.41-0.43.1 is installed
  • OR tomcat6-jsp-2_1-api-6.0.41-0.43.1 is installed
  • OR tomcat6-lib-6.0.41-0.43.1 is installed
  • OR tomcat6-servlet-2_5-api-6.0.41-0.43.1 is installed
  • OR tomcat6-webapps-6.0.41-0.43.1 is installed
    • BACK