Lucene search
F5F5:K16948HistoryJul 10, 2015 - 12:00 a.m.
K16948 : Apache Tomcat vulnerability CVE-2007-1858
2015-07-1000:00:00
my.f5.com
547
Security Advisory Description
The default SSL cipher configuration in Apache Tomcat 4.1.28 through 4.1.31, 5.0.0 through 5.0.30, and 5.5.0 through 5.5.17 uses certain insecure ciphers, including the anonymous cipher, which allows remote attackers to obtain sensitive information or have other, unspecified impacts. (CVE-2007-1858)
Impact
None. F5 products are not affected by this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.3.0 | |
| big-ip afm | eq | 11.4.0 | |
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip aam | eq | 11.4.0 | |
| big-ip aam | eq | 11.4.1 |
Related
cve
cve
CVE-2007-1858
2007-05-10 00:19:00
nessus
nessus
SSL Anonymous Cipher Suites Supported
2008-03-28 00:00:00
openSUSE 10 Security Update : apache2-mod_jk (apache2-mod_jk-5066)
2008-03-26 00:00:00
SuSE 10 Security Update : Tomcat 5 (ZYPP Patch Number 5070)
2008-03-26 00:00:00
tomcat
tomcat
Fixed in Apache Tomcat 5.5.17, 5.0.SVN
2006-04-27 00:00:00
Fixed in Apache Tomcat 4.1.32
2005-11-06 00:00:00
f5
f5
SOL16948 - Apache Tomcat vulnerability CVE-2007-1858
2015-07-10 00:00:00
ubuntucve
ubuntucve
CVE-2007-1858
2007-05-10 00:00:00
cvelist
cvelist
CVE-2007-1858
2007-05-09 22:00:00
prion
prion
Design/Logic Flaw
2007-05-10 00:19:00
nvd
nvd
CVE-2007-1858
2007-05-10 00:19:00
openvas
openvas
SLES10: Security update for Tomcat 5
2009-10-13 00:00:00
SSL/TLS: Report 'Anonymous' Cipher Suites
2017-04-20 00:00:00
SLES9: Security update for Tomcat
2009-10-10 00:00:00
kitploit
kitploit
Sitadel - Web Application Security Scanner
2019-01-14 12:13:00
redhat
redhat
(RHSA-2007:0326) Important: tomcat security update
2007-05-21 00:00:00
securityvulns
securityvulns
oracle
oracle
Oracle Critical Patch Update - January 2014
2014-01-14 00:00:00