HTTP: Apache Tomcat JSP Cross-Site Scripting
This signature detects attempts to exploit a known vulnerability against Apache Tomcat. A successful cross-site scripting attack can expose sensitive information stored in cookies, such as usernames, passwords, credit card numbers, social security numbers, and other important information.
Extended Description
Apache Tomcat is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Exploiting this vulnerability may allow an attacker to perform cross-site scripting attacks on unsuspecting users in the context of the affected website. As a result, the attacker may be able to steal cookie-based authentication credentials and to launch other attacks.
Affected Products
Suse linux
References
BugTraq: 24476
CVE: CVE-2007-2449
URL: http://tomcat.apache.org/security-6.html http://www.securityfocus.com/archive/1/archive/1/471351/100/0/threaded
Short Name
HTTP:XSS:TOMCAT-JSP
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Apache CVE-2007-2449 Cross-Site JSP Scripting Tomcat bid:24476
Release Date
09/21/2007
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Frequently
Vendors
Apache_software_foundation
Red_hat
Suse
Apple
Computer_associates
Novell
Mandriva
CVSS Score
4.3