2
Candidate: CVE-2007-3382
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3382
6
Apache Tomcat 6.0.0 to 6.0.13, 5.5.0 to 5.5.24, 5.0.0 to 5.0.30, 4.1.0 to
7
4.1.36, and 3.3 to 3.3.2 treats single quotes ("'") as delimiters in
8
cookies, which might cause sensitive information such as session IDs to be
9
leaked and allow remote attackers to conduct session hijacking attacks.
13
https://bugs.launchpad.net/ubuntu/+source/tomcat5/+bug/175505
20
edgy_tomcat5.5: needed (reached end-of-life)
21
feisty_tomcat5.5: needed (reached end-of-life)
22
gutsy_tomcat5.5: released (5.5.25-1)
23
hardy_tomcat5.5: released (5.5.25-1)
24
intrepid_tomcat5.5: released (5.5.25-1)
25
jaunty_tomcat5.5: released (5.5.25-1)
28
upstream_tomcat5.5: released (5.5.25)
30
upstream_tomcat5: needs-triage
31
dapper_tomcat5: ignored (reached end-of-life)
32
edgy_tomcat5: needed (reached end-of-life)
33
feisty_tomcat5: needed (reached end-of-life)