NVD

Id
10027  
Name
CVE-2011-3375  
Description
Apache Tomcat 6.0.30 through 6.0.33 and 7.x before 7.0.22 does not properly perform certain caching and recycling operations involving request objects, which allows remote attackers to obtain unintended read access to IP address and HTTP header information in opportunistic circumstances by reading TCP data.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-07  
Published
2012-01-18  
Modified Date
2012-02-15  
Seq
2011-3375  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
57512 10027 CVE-2011-3375 http://tomcat.apache.org/security-6.html  View
57513 10027 CVE-2011-3375 http://tomcat.apache.org/security-7.html  View
57514 10027 CVE-2011-3375 DSA-2401  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
25370 JVNDB-2012-001077 Apache Tomcat における IP アドレスおよび HTTP ヘッダ情報を意図せず読み取られる脆弱性 Apache Tomcat は、Request オブジェクトを含むキャッシュおよびリサイクルを適切に実行しないため、IP アドレスおよび HTTP ヘッダ情報を意図せず読み取られる脆弱性が存在します。 CVE-2011-3375 51282 CVE-2011-3375 10027 5 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-001077.html 2012-01-19 2012-12-17 View