ID de Prueba:	1.3.6.1.4.1.25623.1.0.122020
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2011-1845)
Resumen:	The remote host is missing an update for the 'tomcat5' package(s) announced via the ELSA-2011-1845 advisory.
Descripción:	Summary: The remote host is missing an update for the 'tomcat5' package(s) announced via the ELSA-2011-1845 advisory. Vulnerability Insight: [0:5.5.23-0jpp.22] - Resolves: CVE-2011-0013 rhbz 675931 - Resolves: CVE-2010-3718 rhbz 675931 - Resolves: CVE-2011-1184 rhbz 744983 - Resolves: CVE-2011-2204 rhbz 719181 Affected Software/OS: 'tomcat5' package(s) on Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3718 1025025 http://www.securitytracker.com/id?1025025 20110205 [SECURITY] CVE-2010-3718 Apache Tomcat Local bypass of security manger file permissions http://www.securityfocus.com/archive/1/516211/100/0/threaded 43192 http://secunia.com/advisories/43192 45022 http://secunia.com/advisories/45022 46177 http://www.securityfocus.com/bid/46177 57126 http://secunia.com/advisories/57126 8072 http://securityreason.com/securityalert/8072 APPLE-SA-2011-10-12-3 http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html DSA-2160 http://www.debian.org/security/2011/dsa-2160 HPSBST02955 http://marc.info/?l=bugtraq&m=139344343412337&w=2 HPSBUX02645 http://marc.info/?l=bugtraq&m=130168502603566&w=2 HPSBUX02725 http://marc.info/?l=bugtraq&m=132215163318824&w=2 HPSBUX02860 http://marc.info/?l=bugtraq&m=136485229118404&w=2 MDVSA-2011:030 http://www.mandriva.com/security/advisories?name=MDVSA-2011:030 RHSA-2011:0791 http://www.redhat.com/support/errata/RHSA-2011-0791.html RHSA-2011:0896 http://www.redhat.com/support/errata/RHSA-2011-0896.html RHSA-2011:0897 http://www.redhat.com/support/errata/RHSA-2011-0897.html RHSA-2011:1845 http://www.redhat.com/support/errata/RHSA-2011-1845.html SSRT100627 SSRT101146 SUSE-SR:2011:005 http://lists.opensuse.org/opensuse-security-announce/2011-04/msg00000.html [tomcat-dev] 20190319 svn commit: r1855831 [22/30] - in /tomcat/site/trunk: ./ docs/ xdocs/ https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E [tomcat-dev] 20190325 svn commit: r1856174 [20/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/ https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E [tomcat-dev] 20200203 svn commit: r1873527 [22/30] - /tomcat/site/trunk/docs/ https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E [tomcat-dev] 20200213 svn commit: r1873980 [25/34] - /tomcat/site/trunk/docs/ https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E http://support.apple.com/kb/HT5002 http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5098550.html http://tomcat.apache.org/security-5.html http://tomcat.apache.org/security-6.html http://tomcat.apache.org/security-7.html oval:org.mitre.oval:def:12517 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12517 oval:org.mitre.oval:def:13969 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13969 oval:org.mitre.oval:def:19379 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19379 tomcat-servletcontect-sec-bypass(65159) https://exchange.xforce.ibmcloud.com/vulnerabilities/65159 Common Vulnerability Exposure (CVE) ID: CVE-2011-0013 1025026 http://www.securitytracker.com/id?1025026 20110205 [SECURITY] CVE-2011-0013 Apache Tomcat Manager XSS vulnerability http://www.securityfocus.com/archive/1/516209/30/90/threaded 46174 http://www.securityfocus.com/bid/46174 8093 http://securityreason.com/securityalert/8093 ADV-2011-0376 http://www.vupen.com/english/advisories/2011/0376 http://tomcat.apache.org/security-5.html#Fixed_in_Apache_Tomcat_5.5.32 http://tomcat.apache.org/security-6.html#Fixed_in_Apache_Tomcat_6.0.30 http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.6_%28released_14_Jan_2011%29 https://bugzilla.redhat.com/show_bug.cgi?id=675786 oval:org.mitre.oval:def:12878 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12878 oval:org.mitre.oval:def:14945 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14945 oval:org.mitre.oval:def:19269 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19269 Common Vulnerability Exposure (CVE) ID: CVE-2011-1184 DSA-2401 http://www.debian.org/security/2012/dsa-2401 HPSBOV02762 http://marc.info/?l=bugtraq&m=133469267822771&w=2 MDVSA-2011:156 http://www.mandriva.com/security/advisories?name=MDVSA-2011:156 RHSA-2012:0074 http://rhn.redhat.com/errata/RHSA-2012-0074.html RHSA-2012:0075 http://rhn.redhat.com/errata/RHSA-2012-0075.html RHSA-2012:0076 http://rhn.redhat.com/errata/RHSA-2012-0076.html RHSA-2012:0077 http://rhn.redhat.com/errata/RHSA-2012-0077.html RHSA-2012:0078 http://rhn.redhat.com/errata/RHSA-2012-0078.html RHSA-2012:0325 http://rhn.redhat.com/errata/RHSA-2012-0325.html SSRT100825 SUSE-SU-2012:0155 http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00002.html http://svn.apache.org/viewvc?view=rev&rev=1087655 http://svn.apache.org/viewvc?view=rev&rev=1158180 http://svn.apache.org/viewvc?view=rev&rev=1159309 openSUSE-SU-2012:0208 http://lists.opensuse.org/opensuse-security-announce/2012-02/msg00006.html oval:org.mitre.oval:def:19169 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19169 Common Vulnerability Exposure (CVE) ID: CVE-2011-2204 http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html BugTraq ID: 48456 http://www.securityfocus.com/bid/48456 Debian Security Information: DSA-2401 (Google Search) HPdes Security Advisory: HPSBOV02762 HPdes Security Advisory: HPSBST02955 HPdes Security Advisory: HPSBUX02725 HPdes Security Advisory: HPSBUX02860 HPdes Security Advisory: SSRT100627 HPdes Security Advisory: SSRT100825 HPdes Security Advisory: SSRT101146 https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5@%3Cdev.tomcat.apache.org%3E https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf@%3Cdev.tomcat.apache.org%3E http://www.osvdb.org/73429 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14931 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19532 http://securitytracker.com/id?1025712 http://secunia.com/advisories/44981 http://secunia.com/advisories/48308 XForce ISS Database: tomcat-jmx-info-disclosure(68238) https://exchange.xforce.ibmcloud.com/vulnerabilities/68238 Common Vulnerability Exposure (CVE) ID: CVE-2011-5062 RedHat Security Advisories: RHSA-2012:0074 RedHat Security Advisories: RHSA-2012:0075 RedHat Security Advisories: RHSA-2012:0076 RedHat Security Advisories: RHSA-2012:0077 RedHat Security Advisories: RHSA-2012:0078 RedHat Security Advisories: RHSA-2012:0325 SuSE Security Announcement: SUSE-SU-2012:0155 (Google Search) SuSE Security Announcement: openSUSE-SU-2012:0208 (Google Search) Common Vulnerability Exposure (CVE) ID: CVE-2011-5063 Common Vulnerability Exposure (CVE) ID: CVE-2011-5064
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.