What is the severity of REDHAT-BUG-489028?

The severity of REDHAT-BUG-489028 is considered high due to its potential for Cross-Site Scripting (XSS) attacks.

How do I fix REDHAT-BUG-489028?

To fix REDHAT-BUG-489028, users should ensure they update to a secure version of Apache Tomcat that addresses the invalid HTML issue.

What applications are affected by REDHAT-BUG-489028?

The affected applications include Apache Tomcat versions 6.0.x, 5.5.x, and 4.1.x due to the vulnerable calendar application.

What is the nature of the vulnerability in REDHAT-BUG-489028?

The nature of the vulnerability in REDHAT-BUG-489028 is that it allows for Cross-Site Scripting (XSS) via an ineffective protection mechanism on the time parameter.

Can an attacker exploit REDHAT-BUG-489028 without authentication?

Yes, an attacker can exploit REDHAT-BUG-489028 without requiring authentication, making it more critical to address.

Vulnerability/
REDHAT-BUG-489028

low

CWE

6/3/2009

12/11/2021

REDHAT-BUG-489028: XSS

First published: Fri Mar 06 2009(Updated: )

Quoting the upstream advisory: The calendar application in the examples contains invalid HTML which renders the XSS protection for the time parameter ineffective. An attacker can therefore perform an XSS attack using the time attribute. Mitigation: 6.0.x users should do one of the following: - remove the examples web application - apply this patch <a href="http://svn.apache.org/viewvc?rev=750924&view=rev">http://svn.apache.org/viewvc?rev=750924&view=rev</a> - upgrade to 6.0.19 when released 5.5.x users should do one of the following: - remove the examples web application - apply this patch <a href="http://svn.apache.org/viewvc?rev=750928&view=rev">http://svn.apache.org/viewvc?rev=750928&view=rev</a> - upgrade to 5.5.28 when released 4.1.x users should do one of the following: - remove the examples web application - apply this patch <a href="http://svn.apache.org/viewvc?rev=750927&view=rev">http://svn.apache.org/viewvc?rev=750927&view=rev</a> - upgrade to 4.1.40 when released Example: <a href="http://localhost:8080/examples/jsp/cal/cal2.jsp?time=8am%20STYLE=xss:e/**/xpression(try{a=firstTime}catch(e){firstTime=1;alert('XSS">http://localhost:8080/examples/jsp/cal/cal2.jsp?time=8am%20STYLE=xss:e/**/xpression(try{a=firstTime}catch(e){firstTime=1;alert('XSS</a>')}); Credit: This issue was discovered by Deniz Cevik. References: <a href="http://tomcat.apache.org/security.html">http://tomcat.apache.org/security.html</a> <a href="http://tomcat.apache.org/security-6.html">http://tomcat.apache.org/security-6.html</a> <a href="http://tomcat.apache.org/security-5.html">http://tomcat.apache.org/security-5.html</a>

Affected Software	Affected Version	How to fix
Tomcat	>=6.0.0<=6.0.19>=5.5.0<=5.5.28>=4.1.0<=4.1.40

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of REDHAT-BUG-489028?
The severity of REDHAT-BUG-489028 is considered high due to its potential for Cross-Site Scripting (XSS) attacks.
How do I fix REDHAT-BUG-489028?
To fix REDHAT-BUG-489028, users should ensure they update to a secure version of Apache Tomcat that addresses the invalid HTML issue.
What applications are affected by REDHAT-BUG-489028?
The affected applications include Apache Tomcat versions 6.0.x, 5.5.x, and 4.1.x due to the vulnerable calendar application.
What is the nature of the vulnerability in REDHAT-BUG-489028?
The nature of the vulnerability in REDHAT-BUG-489028 is that it allows for Cross-Site Scripting (XSS) via an ineffective protection mechanism on the time parameter.
Can an attacker exploit REDHAT-BUG-489028 without authentication?
Yes, an attacker can exploit REDHAT-BUG-489028 without requiring authentication, making it more critical to address.

agent/type
agent/last-modified-date
agent/first-publish-date
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2009-0781
agent/references
agent/weakness
agent/severity
agent/description
agent/event
agent/source
agent/softwarecombine
agent/tags
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/apache
canonical/tomcat

Frequently Asked Questions

What is the severity of REDHAT-BUG-489028?
The severity of REDHAT-BUG-489028 is considered high due to its potential for Cross-Site Scripting (XSS) attacks.
How do I fix REDHAT-BUG-489028?
To fix REDHAT-BUG-489028, users should ensure they update to a secure version of Apache Tomcat that addresses the invalid HTML issue.
What applications are affected by REDHAT-BUG-489028?
The affected applications include Apache Tomcat versions 6.0.x, 5.5.x, and 4.1.x due to the vulnerable calendar application.
What is the nature of the vulnerability in REDHAT-BUG-489028?
The nature of the vulnerability in REDHAT-BUG-489028 is that it allows for Cross-Site Scripting (XSS) via an ineffective protection mechanism on the time parameter.
Can an attacker exploit REDHAT-BUG-489028 without authentication?
Yes, an attacker can exploit REDHAT-BUG-489028 without requiring authentication, making it more critical to address.

REDHAT-BUG-489028: XSS

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of REDHAT-BUG-489028?

How do I fix REDHAT-BUG-489028?

What applications are affected by REDHAT-BUG-489028?

What is the nature of the vulnerability in REDHAT-BUG-489028?

Can an attacker exploit REDHAT-BUG-489028 without authentication?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of REDHAT-BUG-489028?

How do I fix REDHAT-BUG-489028?

What applications are affected by REDHAT-BUG-489028?

What is the nature of the vulnerability in REDHAT-BUG-489028?

Can an attacker exploit REDHAT-BUG-489028 without authentication?