CVE-2007-3383

NONECVSS 0.0

0.0

Cross-site scripting (XSS) vulnerability in SendMailServlet in the examples web application (examples/jsp/mail/sendmail.jsp) in Apache Tomcat 4.0.0 through 4.0.6 and 4.1.0 through 4.1.36 allows remote attackers to inject arbitrary web script or HTML via the From field and possibly other fields, related to generation of error messages.

🔗 References (32)

secalert@redhathttp://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html
secalert@redhathttp://osvdb.org/39000
secalert@redhathttp://seclists.org/fulldisclosure/2007/Jul/0448.html
secalert@redhathttp://secunia.com/advisories/30802
secalert@redhathttp://securityreason.com/securityalert/2918
secalert@redhathttp://support.apple.com/kb/HT2163
secalert@redhathttp://tomcat.apache.org/security-4.html
secalert@redhathttp://www.kb.cert.org/vuls/id/862600
secalert@redhathttp://www.securityfocus.com/archive/1/474413/100/0/threaded
secalert@redhathttp://www.securityfocus.com/bid/24999
secalert@redhathttp://www.vupen.com/english/advisories/2007/2618
secalert@redhathttp://www.vupen.com/english/advisories/2008/1981/references
secalert@redhathttps://exchange.xforce.ibmcloud.com/vulnerabilities/35536
secalert@redhathttps://lists.apache.org/thread.html/29dc6c2b625789e70a9c4756b5a327e6547273ff8bde7e0327af48c5%40%3Cdev.tomcat.apache.org%3E
secalert@redhathttps://lists.apache.org/thread.html/c62b0e3a7bf23342352a5810c640a94b6db69957c5c19db507004d74%40%3Cdev.tomcat.apache.org%3E

Is Your Infrastructure Affected by CVE-2007-3383?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-3383

📅 Published

🔄 Last Modified

🔗 References (32)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-3383?