Ubuntu Security Notice (C) 2012-2014 Canonical, Inc. / NASL script (C) 2012-2014 Tenable Network Security, Inc.
The remote Ubuntu host is missing a security-related patch.
It was discovered that the Apache Tomcat HTTP NIO connector
incorrectly handled header data. A remote attacker could cause a
denial of service by sending requests with a large amount of header
It was discovered that Apache Tomcat incorrectly handled DIGEST
authentication. A remote attacker could possibly use these flaws to
perform a replay attack and bypass authentication. (CVE-2012-5885,
Update the affected libtomcat6-java package.
Risk factor :
Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.3
Public Exploit Available : false