admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2008/3xxx/CVE-2008-3271.json
CVE Team 1732552669
- Synchronized data.
2018-10-11 16:05:44 -04:00

158 lines
5.2 KiB
JSON
Raw Blame History

{
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2008-3271",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "Apache Tomcat 5.5.0 and 4.1.0 through 4.1.31 allows remote attackers to bypass an IP address restriction and obtain sensitive information via a request that is processed concurrently with another request but in a different thread, leading to an instance-variable overwrite associated with a \"synchronization problem\" and lack of thread safety, and related to RemoteFilterValve, RemoteAddrValve, and RemoteHostValve."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"name" : "20081009 [SECURITY] CVE-2008-3271 - Apache Tomcat information disclosure",
"refsource" : "BUGTRAQ",
"url" : "http://www.securityfocus.com/archive/1/497220/100/0/threaded"
},
{
"name" : "http://tomcat.apache.org/security-4.html",
"refsource" : "CONFIRM",
"url" : "http://tomcat.apache.org/security-4.html"
},
{
"name" : "http://tomcat.apache.org/security-5.html",
"refsource" : "CONFIRM",
"url" : "http://tomcat.apache.org/security-5.html"
},
{
"name" : "http://www.fujitsu.com/global/support/software/security/products-f/interstage-200806e.html",
"refsource" : "CONFIRM",
"url" : "http://www.fujitsu.com/global/support/software/security/products-f/interstage-200806e.html"
},
{
"name" : "https://issues.apache.org/bugzilla/show_bug.cgi?id=25835",
"refsource" : "CONFIRM",
"url" : "https://issues.apache.org/bugzilla/show_bug.cgi?id=25835"
},
{
"name" : "http://www.nec.co.jp/security-info/secinfo/nv09-006.html",
"refsource" : "CONFIRM",
"url" : "http://www.nec.co.jp/security-info/secinfo/nv09-006.html"
},
{
"name" : "SUSE-SR:2008:023",
"refsource" : "SUSE",
"url" : "http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00012.html"
},
{
"name" : "JVN#30732239",
"refsource" : "JVN",
"url" : "http://jvn.jp/en/jp/JVN30732239/index.html"
},
{
"name" : "JVNDB-2008-000069",
"refsource" : "JVNDB",
"url" : "http://jvndb.jvn.jp/en/contents/2008/JVNDB-2008-000069.html"
},
{
"name" : "31698",
"refsource" : "BID",
"url" : "http://www.securityfocus.com/bid/31698"
},
{
"name" : "35684",
"refsource" : "SECUNIA",
"url" : "http://secunia.com/advisories/35684"
},
{
"name" : "ADV-2008-2793",
"refsource" : "VUPEN",
"url" : "http://www.vupen.com/english/advisories/2008/2793"
},
{
"name" : "ADV-2008-2800",
"refsource" : "VUPEN",
"url" : "http://www.vupen.com/english/advisories/2008/2800"
},
{
"name" : "1021039",
"refsource" : "SECTRACK",
"url" : "http://www.securitytracker.com/id?1021039"
},
{
"name" : "32234",
"refsource" : "SECUNIA",
"url" : "http://secunia.com/advisories/32234"
},
{
"name" : "32213",
"refsource" : "SECUNIA",
"url" : "http://secunia.com/advisories/32213"
},
{
"name" : "32398",
"refsource" : "SECUNIA",
"url" : "http://secunia.com/advisories/32398"
},
{
"name" : "4396",
"refsource" : "SREASON",
"url" : "http://securityreason.com/securityalert/4396"
},
{
"name" : "ADV-2009-1818",
"refsource" : "VUPEN",
"url" : "http://www.vupen.com/english/advisories/2009/1818"
},
{
"name" : "apache-tomcat-valve-security-bypass(45791)",
"refsource" : "XF",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/45791"
}
]
}
}
Reference in New Issue View Git Blame Copy Permalink