Lucene search

Veracode Vulnerability DatabaseVERACODE:7706

HistoryNov 09, 2018 - 12:45 a.m.

Authentication Bypass

2018-11-0900:45:21

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

EPSS

0.002

Percentile

57.7%

JSON

catalina is vulnerable to authentication bypass attacks. The vulnerability exists due to the improper handling of failed undeploy where the appBase files can remain after the failed undeploy process.

References

lists.apple.com/archives/security-announce/2010//Mar/msg00001.html

lists.opensuse.org/opensuse-security-announce/2010-04/msg00001.html

lists.opensuse.org/opensuse-updates/2012-12/msg00089.html

lists.opensuse.org/opensuse-updates/2012-12/msg00090.html

lists.opensuse.org/opensuse-updates/2013-01/msg00037.html

marc.info/?l=bugtraq&m=127420533226623&w=2

marc.info/?l=bugtraq&m=133469267822771&w=2

marc.info/?l=bugtraq&m=139344343412337&w=2

secunia.com/advisories/38316

secunia.com/advisories/38346

secunia.com/advisories/38541

secunia.com/advisories/39317

secunia.com/advisories/43310

secunia.com/advisories/57126

securitytracker.com/id?1023503

support.apple.com/kb/HT4077

svn.apache.org/viewvc?rev=892815&view=rev

svn.apache.org/viewvc?rev=902650&view=rev

svn.apache.org/viewvc?view=revision&revision=902650

tomcat.apache.org/security-5.html

tomcat.apache.org/security-6.html

ubuntu.com/usn/usn-899-1

www.mandriva.com/security/advisories?name=MDVSA-2010:176

www.mandriva.com/security/advisories?name=MDVSA-2010:177

www.securityfocus.com/archive/1/509151/100/0/threaded

www.securityfocus.com/archive/1/516397/100/0/threaded

www.securityfocus.com/bid/37942

www.vmware.com/security/advisories/VMSA-2011-0003.html

www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html

www.vupen.com/english/advisories/2010/0213

exchange.xforce.ibmcloud.com/vulnerabilities/55856

lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E

lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e@%3Cdev.tomcat.apache.org%3E

lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E

lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa@%3Cdev.tomcat.apache.org%3E

lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E

lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E

svn.apache.org/viewvc?view=revision&revision=892815

EPSS

0.002

Percentile

57.7%

JSON

Related for VERACODE:7706