sdkp3-tomcat5

Security update for Tomcat 5

This update of tomcat5/6 fixes: CVE-2009-2693: CVSS v2 Base Score: 5.8 CVE-2009-2902: CVSS v2 Base Score: 4.3 Directory traversal vulnerability allowed remote attackers to create or overwrite arbitrary files/dirs with a specially crafted WAR file. CVE-2009-2901: CVSS v2 Base Score: 4.3 When autoDeploy is enabled the autodeployment process deployed appBase files that remain from a failed undeploy, which might allow remote attackers to bypass intended authentication requirements via HTTP requests. security tomcat5 noarch 0bf7a81013506afef6eed245f4970d6c7e65d087 tomcat5-admin-webapps noarch 2f4220eb4d6d835d01d832907a19032027767f2e tomcat5-webapps noarch 12b2b75f5f0b74ea3856ec2d149c62ee30c19d79