CVE-2007-5333

Published: Feb 12, 2008Modified: Apr 23, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Apache Tomcat 6.0.0 through 6.0.14, 5.5.0 through 5.5.25, and 4.1.0 through 4.1.36 does not properly handle (1) double quote (") characters or (2) %5C (encoded backslash) sequences in a cookie value, which might cause sensitive information such as session IDs to be leaked to remote attackers and enable session hijacking attacks. NOTE: this issue exists because of an incomplete fix for CVE-2007-3385.

Affected (3)

Products: Apache: Tomcat

Apache

1 product

Tomcat

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Apache Tomcat	From 4.1.0 to 4.1.36
Apache Tomcat	From 5.5.0 to 5.5.25
Apache Tomcat	From 6.0.0 to 6.0.14

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (110)

http://jvn.jp/jp/JVN%2309470767/index.html

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html

Source: secalert@redhat.com

Third Party Advisory

http://marc.info/?l=bugtraq&m=139344343412337&w=2

Source: secalert@redhat.com

Mailing ListThird Party Advisory

http://secunia.com/advisories/28878

Source: secalert@redhat.com

Broken Link

http://secunia.com/advisories/28884

Source: secalert@redhat.com

Broken Link

http://secunia.com/advisories/28915

Source: secalert@redhat.com

Broken Link

http://secunia.com/advisories/29711

Source: secalert@redhat.com

Broken Link

http://secunia.com/advisories/30676

Source: secalert@redhat.com

Broken Link

http://secunia.com/advisories/30802

Source: secalert@redhat.com

Broken Link

http://secunia.com/advisories/32036

Source: secalert@redhat.com

Broken Link

http://secunia.com/advisories/32222

Source: secalert@redhat.com

Broken Link

http://secunia.com/advisories/33330

Source: secalert@redhat.com

Broken Link

http://secunia.com/advisories/37460

Source: secalert@redhat.com

Broken Link

http://secunia.com/advisories/44183

Source: secalert@redhat.com

Broken Link

http://secunia.com/advisories/57126

Source: secalert@redhat.com

Broken Link

http://security.gentoo.org/glsa/glsa-200804-10.xml

Source: secalert@redhat.com

Broken Link

http://securityreason.com/securityalert/3636

Source: secalert@redhat.com

Broken Link

http://support.apple.com/kb/HT2163

Source: secalert@redhat.com

Third Party Advisory

http://support.apple.com/kb/HT3216

Source: secalert@redhat.com

Third Party Advisory

http://tomcat.apache.org/security-4.html

Source: secalert@redhat.com

Vendor Advisory

http://tomcat.apache.org/security-5.html

Source: secalert@redhat.com

Vendor Advisory

http://tomcat.apache.org/security-6.html

Source: secalert@redhat.com

Vendor Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg24018932

Source: secalert@redhat.com

Third Party Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg27012047

Source: secalert@redhat.com

Third Party Advisory

http://www-01.ibm.com/support/docview.wss?uid=swg27012048

Source: secalert@redhat.com

Third Party Advisory

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ20133

Source: secalert@redhat.com

Third Party Advisory

http://www-1.ibm.com/support/docview.wss?uid=swg1IZ20991

Source: secalert@redhat.com

Third Party Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2009:018

Source: secalert@redhat.com

Third Party Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2010:176

Source: secalert@redhat.com

Third Party Advisory

http://www.redhat.com/docs/en-US/JBoss_Enterprise_Application_Platform/4.2.0.cp08/html-single/Release_Notes/index.html

Source: secalert@redhat.com

Third Party Advisory

http://www.securityfocus.com/archive/1/487822/100/0/threaded

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

http://www.securityfocus.com/archive/1/507985/100/0/threaded

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/27706

Source: secalert@redhat.com

ExploitPatchThird Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/31681

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

http://www.vmware.com/security/advisories/VMSA-2008-0010.html

Source: secalert@redhat.com

Third Party Advisory

http://www.vmware.com/security/advisories/VMSA-2009-0016.html

Source: secalert@redhat.com

Third Party Advisory

http://www.vupen.com/english/advisories/2008/0488

Source: secalert@redhat.com

URL Repurposed

http://www.vupen.com/english/advisories/2008/1856/references

Source: secalert@redhat.com

URL Repurposed

http://www.vupen.com/english/advisories/2008/1981/references

Source: secalert@redhat.com

URL Repurposed

http://www.vupen.com/english/advisories/2008/2690

Source: secalert@redhat.com

URL Repurposed

http://www.vupen.com/english/advisories/2008/2780

Source: secalert@redhat.com

URL Repurposed

http://www.vupen.com/english/advisories/2009/3316

Source: secalert@redhat.com

URL Repurposed

https://bugzilla.redhat.com/show_bug.cgi?id=532111

Source: secalert@redhat.com

Issue TrackingThird Party Advisory

https://lists.apache.org/thread.html/06cfb634bc7bf37af7d8f760f118018746ad8efbd519c4b789ac9c2e%40%3Cdev.tomcat.apache.org%3E

Source: secalert@redhat.com

https://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E

Source: secalert@redhat.com

https://lists.apache.org/thread.html/8dcaf7c3894d66cb717646ea1504ea6e300021c85bb4e677dc16b1aa%40%3Cdev.tomcat.apache.org%3E

Source: secalert@redhat.com

https://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

Source: secalert@redhat.com

https://lists.apache.org/thread.html/r3aacc40356defc3f248aa504b1e48e819dd0471a0a83349080c6bcbf%40%3Cdev.tomcat.apache.org%3E

Source: secalert@redhat.com

https://lists.apache.org/thread.html/r584a714f141eff7b1c358d4679288177bd4ca4558e9999d15867d4b5%40%3Cdev.tomcat.apache.org%3E

Source: secalert@redhat.com

https://lists.apache.org/thread.html/rb71997f506c6cc8b530dd845c084995a9878098846c7b4eacfae8db3%40%3Cdev.tomcat.apache.org%3E

Source: secalert@redhat.com

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11177

Source: secalert@redhat.com

Tool Signature

https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00315.html

Source: secalert@redhat.com

Third Party Advisory

https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00460.html

Source: secalert@redhat.com

Third Party Advisory

http://jvn.jp/jp/JVN%2309470767/index.html