![]() Additionally, it is affected by a cross-site (XSS) scripting vulnerability as the SSI printenv command echoes user provided data without proper escaping. An unauthenticated, remote attacker can exploit this to execute arbitrary commands. It is, therefore, affected by a remote code execution vulnerability due to a bug in the way the JRE passes command line arguments to Windows. The version of Tomcat installed on the remote Windows host is prior to 9.0.19. The remote Windows Apache Tomcat server is affected by a remote code execution vulnerability Description Required KB Items : Host/OS, installed_sw/Apache Tomcat Name: Apache Tomcat 9.0.0.M1 < 9.0.19 Remote Code Execution Vulnerability (Windows)Äependencies: apache_tomcat_nix_installed.nbin, os_fingerprint.nasl, tomcat_error_version.nasl, tomcat_win_installed.nbin
0 Comments
Leave a Reply. |