| http://www.w3.org/ns/prov#value | - due to the way that WebDAV write requests are handled (CVE-2007-5461).* Tomcat does not properly handle double quote () characters or %5C (encoded backslash) sequences in a cookie value, which might cause sensitive information such as session IDs to be leaked to remote attackers and enable session hijacking attacks (CVE-2007-5333).Impact======These vulnerabilities can be exploited by:* a maliciou
|
