CVE-2006-0254
published 2006-01-18CVE-2006-0254: Multiple cross-site scripting (XSS) vulnerabilities in Apache Geronimo 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) time…
PriorityP423medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
31.60%
98.1th percentile
Multiple cross-site scripting (XSS) vulnerabilities in Apache Geronimo 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) time parameter to cal2.jsp and (2) any invalid parameter, which causes an XSS when the log file is viewed by the Web-Access-Log viewer.
Affected
55 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | geronimo | — | — |
| apache | tomcat | <= 4.1.31 | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
| apache | tomcat | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
ghsa4.3MEDIUM
osv4.3MEDIUM
vendor_redhat4.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Apache Geronimo console 1.0 vulnerable to cross-site scripting
osv·2022-05-01
CVE-2006-0254 [MEDIUM] Apache Geronimo console 1.0 vulnerable to cross-site scripting
Apache Geronimo console 1.0 vulnerable to cross-site scripting
Multiple cross-site scripting (XSS) vulnerabilities in Apache Geronimo 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) time parameter to cal2.jsp and (2) any invalid parameter, which causes an XSS when the log file is viewed by the Web-Access-Log viewer. Version 1.1 contains fixes for these issues.
GHSA
Apache Geronimo console 1.0 vulnerable to cross-site scripting
ghsa·2022-05-01
CVE-2006-0254 [MEDIUM] CWE-79 Apache Geronimo console 1.0 vulnerable to cross-site scripting
Apache Geronimo console 1.0 vulnerable to cross-site scripting
Multiple cross-site scripting (XSS) vulnerabilities in Apache Geronimo 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) time parameter to cal2.jsp and (2) any invalid parameter, which causes an XSS when the log file is viewed by the Web-Access-Log viewer. Version 1.1 contains fixes for these issues.
GHSA
Cross-site scripting in Apache Tomcat
ghsa·2022-05-01·CVSS 4.3
CVE-2006-7196 [MEDIUM] CWE-79 Cross-site scripting in Apache Tomcat
Cross-site scripting in Apache Tomcat
Cross-site scripting (XSS) vulnerability in the calendar application example in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.31, 5.0.0 through 5.0.30, and 5.5.0 through 5.5.15 allows remote attackers to inject arbitrary web script or HTML via the time parameter to cal2.jsp and possibly unspecified other vectors. NOTE: this may be related to CVE-2006-0254.1.
OSV
Cross-site scripting in Apache Tomcat
osv·2022-05-01·CVSS 4.3
CVE-2006-7196 [MEDIUM] Cross-site scripting in Apache Tomcat
Cross-site scripting in Apache Tomcat
Cross-site scripting (XSS) vulnerability in the calendar application example in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.31, 5.0.0 through 5.0.30, and 5.5.0 through 5.5.15 allows remote attackers to inject arbitrary web script or HTML via the time parameter to cal2.jsp and possibly unspecified other vectors. NOTE: this may be related to CVE-2006-0254.1.
Red Hat
tomcat XSS in example webapps
vendor_redhat·2007-04-26·CVSS 4.3
CVE-2006-7196 [MEDIUM] CWE-79 tomcat XSS in example webapps
tomcat XSS in example webapps
Cross-site scripting (XSS) vulnerability in the calendar application example in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0 through 4.1.31, 5.0.0 through 5.0.30, and 5.5.0 through 5.5.15 allows remote attackers to inject arbitrary web script or HTML via the time parameter to cal2.jsp and possibly unspecified other vectors. NOTE: this may be related to CVE-2006-0254.1.
Red Hat
tomcat examples XSS
vendor_redhat·2006-01-15·CVSS 4.3
CVE-2006-0254 [MEDIUM] CWE-79 tomcat examples XSS
tomcat examples XSS
Multiple cross-site scripting (XSS) vulnerabilities in Apache Geronimo 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) time parameter to cal2.jsp and (2) any invalid parameter, which causes an XSS when the log file is viewed by the Web-Access-Log viewer.
No detection rules found.
Exploit-DB
Apache Geronimo 1.0 - Error Page Cross-Site Scripting
exploitdb·2006-01-16
CVE-2006-0254 Apache Geronimo 1.0 - Error Page Cross-Site Scripting
Apache Geronimo 1.0 - Error Page Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/16260/info
Apache Geronimo is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input.
A successful exploit could allow an attacker to compromise the application, access or modify data, or steal cookie-based authentication credentials. The attacker could also exploit this issue to control how the site is rendered to the user; other attacks are also possible.
http://www.example.com/script-that-dont-has-to-exist.jsp?foobar="/>alert(document.cookie)
Exploit-DB
Apache Tomcat / Geronimo 1.0 - 'Sample Script cal2.jsp?time' Cross-Site Scripting
exploitdb·2006-01-16
CVE-2006-0254 Apache Tomcat / Geronimo 1.0 - 'Sample Script cal2.jsp?time' Cross-Site Scripting
Apache Tomcat / Geronimo 1.0 - 'Sample Script cal2.jsp?time' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/16260/info
Apache Geronimo is prone to multiple input-validation vulnerabilities because the application fails to properly sanitize user-supplied input.
A successful exploit could allow an attacker to compromise the application, access or modify data, or steal cookie-based authentication credentials. The attacker could also exploit this issue to control how the site is rendered to the user; other attacks are also possible.
http://www.example.com/jsp-examples/cal/cal2.jsp?time="/>alert('Gotcha')
Bugzilla
CVE-2006-0254 tomcat examples XSS
bugzilla·2008-01-29·CVSS 4.3
CVE-2006-0254 [MEDIUM] CVE-2006-0254 tomcat examples XSS
CVE-2006-0254 tomcat examples XSS
Common Vulnerabilities and Exposures assigned an identifier CVE-2006-0254 to the following vulnerability:
Multiple cross-site scripting (XSS) vulnerabilities in Apache Geronimo 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) time parameter to cal2.jsp and (2) any invalid parameter, which causes an XSS when the log file is viewed by the Web-Access-Log viewer.
References:
http://www.securityfocus.com/archive/1/archive/1/421996/100/0/threaded
http://issues.apache.org/jira/browse/GERONIMO-1474
http://www.oliverkarow.de/research/geronimo_css.txt
https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12310181&styleName=Html&projectId=10220&Create=Create
http://www.securityfocus.com/bid/16260
http://www.frsirt.com/english
Bugzilla
CVE-2007-5333 Improve cookie parsing for tomcat5 [rhn_satellite_5.0]
bugzilla·2008-01-10·CVSS 4.3
CVE-2007-5333 [MEDIUM] CVE-2007-5333 Improve cookie parsing for tomcat5 [rhn_satellite_5.0]
CVE-2007-5333 Improve cookie parsing for tomcat5 [rhn_satellite_5.0]
rhn_satellite_5.0 tracking bug: see blocks bug list for full details of the security issue(s).
This bug is never intended to be made public, please put any public notes in the 'blocks' bugs.
For the security issues handling process overview see: http://intranet.corp.redhat.com/ic/intranet/SecurityZStreamFAQ
[bug automatically created by: add-tracking-bugs]
Discussion:
[root@rlx-3-18 RPMS]# ls tomcat5-5.0.30-0jpp_9rh.noarch.rpm
tomcat5-5.0.30-0jpp_9rh.noarch.rpm
[root@rlx-3-18 RPMS]# pwd
/tmp/mnt/RPMS
[root@rlx-3-18 RPMS]#
verified
---
This is not a bug. The real issue that was talked about is actually:
private bug Bugzilla Bug 430731: CVE-2007-5461 CVE-2007-3385 CVE-2007-3382
CVE-2007-1358 CVE-2007-1355 CVE-2007
Bugzilla
CVE-2006-0254 tomcat examples XSS (RHAPS)
bugzilla·2006-01-18·CVSS 4.3
CVE-2006-0254 [MEDIUM] CVE-2006-0254 tomcat examples XSS (RHAPS)
CVE-2006-0254 tomcat examples XSS (RHAPS)
+++ This bug was initially created as a clone of Bug #178175 +++
A new cross-site scripting flaw has been reported in the tomcat jsp examples as
shipped in tomcat5-webapps in Red Hat Application Server. See
http://issues.apache.org/jira/browse/GERONIMO-1474
This is fixed in upstream svn.
Marking this as moderate severity as users should not be putting examples into
production environments. I've held off marking it low as the examples ought to
show good practices and our users may copy the bad behaviour.
Note also these issues
http://issues.apache.org/bugzilla/show_bug.cgi?id=32953
Note: We've not looked which of these issues actually affect the tomcat5-webapps
package.
Discussion:
Ping.
Any plans to update this package in the near future?
Bugzilla
CVE-2006-0254 tomcat examples XSS
bugzilla·2006-01-18·CVSS 4.3
CVE-2006-0254 [MEDIUM] CVE-2006-0254 tomcat examples XSS
CVE-2006-0254 tomcat examples XSS
A new cross-site scripting flaw has been reported in the tomcat jsp examples as
shipped in tomcat5-webapps in Red Hat Application Server. See
http://issues.apache.org/jira/browse/GERONIMO-1474
This is fixed in upstream svn.
Marking this as moderate severity as users should not be putting examples into
production environments. I've held off marking it low as the examples ought to
show good practices and our users may copy the bad behaviour.
Note also these issues
http://issues.apache.org/bugzilla/show_bug.cgi?id=32953
Note: We've not looked which of these issues actually affect the tomcat5-webapps
package.
Discussion:
This issue has been fixed upstream with Tomcat version 5.5.12 and the upstream
version is part of errata RHSA-2006:0161.
http://rhn.
Bugzilla
CVE-2006-0254 tomcat examples XSS
bugzilla·2006-01-18·CVSS 4.3
CVE-2006-0254 [MEDIUM] CVE-2006-0254 tomcat examples XSS
CVE-2006-0254 tomcat examples XSS
+++ This bug was initially created as a clone of Bug #178175 +++
A new cross-site scripting flaw has been reported in the tomcat jsp examples as
shipped in tomcat5-webapps in Red Hat Application Server. See
http://issues.apache.org/jira/browse/GERONIMO-1474
This is fixed in upstream svn.
Marking this as moderate severity as users should not be putting examples into
production environments. I've held off marking it low as the examples ought to
show good practices and our users may copy the bad behaviour.
Note also these issues
http://issues.apache.org/bugzilla/show_bug.cgi?id=32953
Note: We've not looked which of these issues actually affect the tomcat5-webapps
package.
Discussion:
This report targets the FC3 or FC4 products, which have now been EO
Bugzilla
CVE-2006-0254 tomcat examples XSS
bugzilla·2006-01-18·CVSS 4.3
CVE-2006-0254 [MEDIUM] CVE-2006-0254 tomcat examples XSS
CVE-2006-0254 tomcat examples XSS
+++ This bug was initially created as a clone of Bug #178175 +++
A new cross-site scripting flaw has been reported in the tomcat jsp examples as
shipped in tomcat5-webapps in Red Hat Application Server. See
http://issues.apache.org/jira/browse/GERONIMO-1474
This is fixed in upstream svn.
Marking this as moderate severity as users should not be putting examples into
production environments. I've held off marking it low as the examples ought to
show good practices and our users may copy the bad behaviour.
Note also these issues
http://issues.apache.org/bugzilla/show_bug.cgi?id=32953
Note: We've not looked which of these issues actually affect the tomcat5-webapps
package.
Discussion:
ping! if fixed in rawhide please close this bug, otherwise please t
http://issues.apache.org/jira/browse/GERONIMO-1474http://rhn.redhat.com/errata/RHSA-2008-0630.htmlhttp://secunia.com/advisories/18485http://secunia.com/advisories/31493http://www.oliverkarow.de/research/geronimo_css.txthttp://www.redhat.com/support/errata/RHSA-2008-0261.htmlhttp://www.securityfocus.com/archive/1/421996/100/0/threadedhttp://www.securityfocus.com/bid/16260http://www.vupen.com/english/advisories/2006/0217https://exchange.xforce.ibmcloud.com/vulnerabilities/24158https://exchange.xforce.ibmcloud.com/vulnerabilities/24159https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12310181&styleName=Html&projectId=10220&Create=Createhttp://issues.apache.org/jira/browse/GERONIMO-1474http://rhn.redhat.com/errata/RHSA-2008-0630.htmlhttp://secunia.com/advisories/18485http://secunia.com/advisories/31493http://www.oliverkarow.de/research/geronimo_css.txthttp://www.redhat.com/support/errata/RHSA-2008-0261.htmlhttp://www.securityfocus.com/archive/1/421996/100/0/threadedhttp://www.securityfocus.com/bid/16260http://www.vupen.com/english/advisories/2006/0217https://exchange.xforce.ibmcloud.com/vulnerabilities/24158https://exchange.xforce.ibmcloud.com/vulnerabilities/24159https://issues.apache.org/jira/secure/ReleaseNote.jspa?version=12310181&styleName=Html&projectId=10220&Create=Create
2006-01-18
Published