ID de Prueba:	1.3.6.1.4.1.25623.1.0.803780
Categoría:	Web Servers
Título:	Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability
Resumen:	Apache Tomcat is prone to an information disclosure vulnerability.
Descripción:	Summary: Apache Tomcat is prone to an information disclosure vulnerability. Vulnerability Insight: The flaw is due to an improper handling of HTTP pipelining. A remote attacker could exploit this vulnerability to read responses intended for another user and obtain sensitive information. Vulnerability Impact: Successful exploitation will allow remote attackers to obtain sensitive information that may aid in further attacks. Affected Software/OS: Apache Tomcat version 7.0.x before 7.0.12. Solution: Upgrade Apache Tomcat version to 7.0.12 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1475 1025303 http://www.securitytracker.com/id?1025303 20110406 [SECURITY] CVE-2011-1475 Apache Tomcat information disclosure http://seclists.org/fulldisclosure/2011/Apr/97 http://www.securityfocus.com/archive/1/517363 47199 http://www.securityfocus.com/bid/47199 8188 http://securityreason.com/securityalert/8188 ADV-2011-0894 http://www.vupen.com/english/advisories/2011/0894 http://svn.apache.org/viewvc?view=revision&revision=1086349 http://svn.apache.org/viewvc?view=revision&revision=1086352 http://tomcat.apache.org/security-7.html https://issues.apache.org/bugzilla/show_bug.cgi?id=50957 oval:org.mitre.oval:def:12374 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12374 tomcat-httpbio-info-disclosure(66676) https://exchange.xforce.ibmcloud.com/vulnerabilities/66676
Copyright	Copyright (C) 2013 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.