Severity: Medium
ID: 34168
File Name: suse_tomcat55-5547.nasl
Version: 1.13
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 9/11/2008
Updated: 1/14/2021
Supported Sensors: Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Factor: Low
Score: 2.9
Risk Factor: Medium
Base Score: 4.3
Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N
CPE: p-cpe:/a:novell:opensuse:tomcat55-jsp-2_0-api-javadoc, p-cpe:/a:novell:opensuse:tomcat55-admin-webapps, p-cpe:/a:novell:opensuse:tomcat55-common-lib, p-cpe:/a:novell:opensuse:tomcat55-jsp-2_0-api, p-cpe:/a:novell:opensuse:tomcat55-servlet-2_4-api, p-cpe:/a:novell:opensuse:tomcat55, p-cpe:/a:novell:opensuse:tomcat55-servlet-2_4-api-javadoc, p-cpe:/a:novell:opensuse:tomcat55-server-lib, cpe:/o:novell:opensuse:10.3, p-cpe:/a:novell:opensuse:tomcat55-jasper-javadoc, p-cpe:/a:novell:opensuse:tomcat55-webapps, p-cpe:/a:novell:opensuse:tomcat55-jasper
Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 8/22/2008
CANVAS (D2ExploitPack)
Elliot (Apache Tomcat File Disclosure)
CVE: CVE-2008-2938
CWE: 22