CVE-2009-0033

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

SecuriTeam™
Beyond Security®

SecuriTeam™ Home
Ask the Team
Mailing Lists
Advertising Info
Blogs

	SecuriTeam™ in Your Inbox

	E-mail this CVE-2009-0033 to a friend

New vulnerability?
New tool?
Tell us

Credit:
The original article can be found at: http://www.securityfocus.com/bid/35193

Website Security Scan	Code Vulnerability Test	Network Assessment Tool
Detect hidden vulnerabilities	Exhaustive automated testing	Real-time, continuous security
Get guidance from professionals	of internal or 3rd party code.	scanning for your entire network

Check for CVE-2009-0033

Vulnerability Assessment and Management.
Automated Pen Testing for 50 to 50,000 nodes
beyondsecurity.com/vulnerability-scanner

Vulnerable Systems:
* Apache Software Foundation Tomcat 6.0.18
* Apache Software Foundation Tomcat 6.0.16
* Apache Software Foundation Tomcat 6.0.15
* Apache Software Foundation Tomcat 6.0.14
* Apache Software Foundation Tomcat 6.0.13
* Apache Software Foundation Tomcat 6.0.12
* Apache Software Foundation Tomcat 6.0.11
* Apache Software Foundation Tomcat 6.0.10
* Apache Software Foundation Tomcat 6.0.9
* Apache Software Foundation Tomcat 6.0.8
* Apache Software Foundation Tomcat 6.0.7
* Apache Software Foundation Tomcat 6.0.6
* Apache Software Foundation Tomcat 6.0.5
* Apache Software Foundation Tomcat 6.0.4
* Apache Software Foundation Tomcat 6.0.3
* Apache Software Foundation Tomcat 6.0.2
* Apache Software Foundation Tomcat 6.0.1
* Apache Software Foundation Tomcat 6.0
* Apache Software Foundation Tomcat 5.5.27
* Apache Software Foundation Tomcat 5.5.26
* Apache Software Foundation Tomcat 5.5.25
* Apache Software Foundation Tomcat 5.5.24
* Apache Software Foundation Tomcat 5.5.23
* Apache Software Foundation Tomcat 5.5.22
* Apache Software Foundation Tomcat 5.5.21
* Apache Software Foundation Tomcat 5.5.20
* Apache Software Foundation Tomcat 5.5.19
* Apache Software Foundation Tomcat 5.5.18
* Apache Software Foundation Tomcat 5.5.17
* Apache Software Foundation Tomcat 5.5.16
* Apache Software Foundation Tomcat 5.5.15
* Apache Software Foundation Tomcat 5.5.14
* Apache Software Foundation Tomcat 5.5.13
* Apache Software Foundation Tomcat 5.5.12
* Apache Software Foundation Tomcat 5.5.11
* Apache Software Foundation Tomcat 5.5.10
* Apache Software Foundation Tomcat 5.5.9
* Apache Software Foundation Tomcat 5.5.8
* Apache Software Foundation Tomcat 5.5.7
* Apache Software Foundation Tomcat 5.5.6
* Apache Software Foundation Tomcat 5.5.5
* Apache Software Foundation Tomcat 5.5.4
* Apache Software Foundation Tomcat 5.5.3
* Apache Software Foundation Tomcat 5.5.2
* Apache Software Foundation Tomcat 5.5.1
* Apache Software Foundation Tomcat 5.5
* Apache Software Foundation Tomcat 4.1.39
* Apache Software Foundation Tomcat 4.1.38
* Apache Software Foundation Tomcat 4.1.37
* Apache Software Foundation Tomcat 4.1.36
* Apache Software Foundation Tomcat 4.1.35
* Apache Software Foundation Tomcat 4.1.34
* Apache Software Foundation Tomcat 4.1.32
* Apache Software Foundation Tomcat 4.1.31
* Apache Software Foundation Tomcat 4.1.30
* Apache Software Foundation Tomcat 4.1.29
* Apache Software Foundation Tomcat 4.1.28
* Apache Software Foundation Tomcat 4.1.24
* Apache Software Foundation Tomcat 4.1.12
* Apache Software Foundation Tomcat 4.1.10
* Apache Software Foundation Tomcat 4.1.3 beta
* Apache Software Foundation Tomcat 4.1.3
* Apache Software Foundation Tomcat 4.1

Attackers can exploit this issue to cause the server to end up in an error state, denying service to legitimate users. .

Vendor Status:
Apache Software Foundation as issued an update for this vulnerablity.

Patch Availability:
http://httpd.apache.org/download.cgi

CVE Information:
CVE-2009-0033

Disclosure Timeline:
Published: Jun 03 2009
Updated: Apr 17 2012

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus