Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2008-3271

Apache Tomcat 5.5.0 and 4.1.0 through 4.1.31 allows remote attackers to bypass an IP address restriction and obtain sensitive information via a request that is processed concurrently with another request but in a different thread, leading to an instance-variable overwrite associated with a "synchronization problem" and lack of thread safety, and related to RemoteFilterValve, RemoteAddrValve, and RemoteHostValve.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.043
EPSS Ranking 88.2%
CVSS Severity
CVSS v2 Score 4.3
References
Products affected by CVE-2008-3271
  • Apache » Tomcat » Version: 4.1.0
    cpe:2.3:a:apache:tomcat:4.1.0
  • Apache » Tomcat » Version: 4.1.1
    cpe:2.3:a:apache:tomcat:4.1.1
  • Apache » Tomcat » Version: 4.1.10
    cpe:2.3:a:apache:tomcat:4.1.10
  • Apache » Tomcat » Version: 4.1.11
    cpe:2.3:a:apache:tomcat:4.1.11
  • Apache » Tomcat » Version: 4.1.12
    cpe:2.3:a:apache:tomcat:4.1.12
  • Apache » Tomcat » Version: 4.1.13
    cpe:2.3:a:apache:tomcat:4.1.13
  • Apache » Tomcat » Version: 4.1.14
    cpe:2.3:a:apache:tomcat:4.1.14
  • Apache » Tomcat » Version: 4.1.15
    cpe:2.3:a:apache:tomcat:4.1.15
  • Apache » Tomcat » Version: 4.1.16
    cpe:2.3:a:apache:tomcat:4.1.16
  • Apache » Tomcat » Version: 4.1.17
    cpe:2.3:a:apache:tomcat:4.1.17
  • Apache » Tomcat » Version: 4.1.18
    cpe:2.3:a:apache:tomcat:4.1.18
  • Apache » Tomcat » Version: 4.1.19
    cpe:2.3:a:apache:tomcat:4.1.19
  • Apache » Tomcat » Version: 4.1.2
    cpe:2.3:a:apache:tomcat:4.1.2
  • Apache » Tomcat » Version: 4.1.20
    cpe:2.3:a:apache:tomcat:4.1.20
  • Apache » Tomcat » Version: 4.1.21
    cpe:2.3:a:apache:tomcat:4.1.21
  • Apache » Tomcat » Version: 4.1.22
    cpe:2.3:a:apache:tomcat:4.1.22
  • Apache » Tomcat » Version: 4.1.23
    cpe:2.3:a:apache:tomcat:4.1.23
  • Apache » Tomcat » Version: 4.1.24
    cpe:2.3:a:apache:tomcat:4.1.24
  • Apache » Tomcat » Version: 4.1.25
    cpe:2.3:a:apache:tomcat:4.1.25
  • Apache » Tomcat » Version: 4.1.26
    cpe:2.3:a:apache:tomcat:4.1.26
  • Apache » Tomcat » Version: 4.1.27
    cpe:2.3:a:apache:tomcat:4.1.27
  • Apache » Tomcat » Version: 4.1.28
    cpe:2.3:a:apache:tomcat:4.1.28
  • Apache » Tomcat » Version: 4.1.29
    cpe:2.3:a:apache:tomcat:4.1.29
  • Apache » Tomcat » Version: 4.1.3
    cpe:2.3:a:apache:tomcat:4.1.3
  • Apache » Tomcat » Version: 4.1.30
    cpe:2.3:a:apache:tomcat:4.1.30
  • Apache » Tomcat » Version: 4.1.31
    cpe:2.3:a:apache:tomcat:4.1.31
  • Apache » Tomcat » Version: 4.1.4
    cpe:2.3:a:apache:tomcat:4.1.4
  • Apache » Tomcat » Version: 4.1.5
    cpe:2.3:a:apache:tomcat:4.1.5
  • Apache » Tomcat » Version: 4.1.6
    cpe:2.3:a:apache:tomcat:4.1.6
  • Apache » Tomcat » Version: 4.1.7
    cpe:2.3:a:apache:tomcat:4.1.7
  • Apache » Tomcat » Version: 4.1.8
    cpe:2.3:a:apache:tomcat:4.1.8
  • Apache » Tomcat » Version: 4.1.9
    cpe:2.3:a:apache:tomcat:4.1.9
  • Apache » Tomcat » Version: 5.5.0
    cpe:2.3:a:apache:tomcat:5.5.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved