{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2010-11-22T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in the Manager application in Apache Tomcat 6.0.12 through 6.0.29 and 7.0.0 through 7.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) orderBy or (2) sort parameter to sessionsList.jsp, or unspecified input to (3) sessionDetail.jsp or (4) java/org/apache/catalina/manager/JspHelper.java, related to use of untrusted web applications."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-10T18:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "USN-1048-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "http://www.ubuntu.com/usn/USN-1048-1"}, {"name": "42337", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/42337"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://svn.apache.org/viewvc?view=revision&revision=1037778"}, {"name": "20101122 [SECURITY] CVE-2010-4172: Apache Tomcat Manager application XSS vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/514866/100/0/threaded"}, {"name": "45022", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/45022"}, {"name": "tomcat-sessionlist-xss(63422)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/63422"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://tomcat.apache.org/security-7.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=656246"}, {"name": "ADV-2010-3047", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2010/3047"}, {"name": "APPLE-SA-2011-10-12-3", "tags": ["vendor-advisory", "x_refsource_APPLE"], "url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"}, {"name": "20101122 [SECURITY] CVE-2010-4172: Apache Tomcat Manager application XSS vulnerability", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-11/0285.html"}, {"name": "RHSA-2011:0897", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2011-0897.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://tomcat.apache.org/security-6.html"}, {"name": "57126", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/57126"}, {"name": "RHSA-2011:0791", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2011-0791.html"}, {"name": "ADV-2011-0203", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2011/0203"}, {"name": "1024764", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1024764"}, {"name": "RHSA-2011:0896", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2011-0896.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.apple.com/kb/HT5002"}, {"name": "HPSBST02955", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=139344343412337&w=2"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5098550.html"}, {"name": "43019", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/43019"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://svn.apache.org/viewvc?view=revision&revision=1037779"}, {"name": "45015", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/45015"}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T03:34:37.407Z"}, "title": "CVE Program Container", "references": [{"name": "USN-1048-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "http://www.ubuntu.com/usn/USN-1048-1"}, {"name": "42337", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/42337"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://svn.apache.org/viewvc?view=revision&revision=1037778"}, {"name": "20101122 [SECURITY] CVE-2010-4172: Apache Tomcat Manager application XSS vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/514866/100/0/threaded"}, {"name": "45022", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/45022"}, {"name": "tomcat-sessionlist-xss(63422)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/63422"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://tomcat.apache.org/security-7.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=656246"}, {"name": "ADV-2010-3047", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2010/3047"}, {"name": "APPLE-SA-2011-10-12-3", "tags": ["vendor-advisory", "x_refsource_APPLE", "x_transferred"], "url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"}, {"name": "20101122 [SECURITY] CVE-2010-4172: Apache Tomcat Manager application XSS vulnerability", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-11/0285.html"}, {"name": "RHSA-2011:0897", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2011-0897.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://tomcat.apache.org/security-6.html"}, {"name": "57126", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/57126"}, {"name": "RHSA-2011:0791", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2011-0791.html"}, {"name": "ADV-2011-0203", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2011/0203"}, {"name": "1024764", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1024764"}, {"name": "RHSA-2011:0896", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2011-0896.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.apple.com/kb/HT5002"}, {"name": "HPSBST02955", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=139344343412337&w=2"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5098550.html"}, {"name": "43019", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/43019"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://svn.apache.org/viewvc?view=revision&revision=1037779"}, {"name": "45015", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/45015"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2010-4172", "datePublished": "2010-11-26T19:00:00", "dateReserved": "2010-11-04T00:00:00", "dateUpdated": "2024-08-07T03:34:37.407Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:apache:tomcat:6.0.12:*:*:*:*:*:*:*", "matchCriteriaId": "6B6B0504-27C1-4824-A928-A878CBBAB32D", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:6.0.13:*:*:*:*:*:*:*", "matchCriteriaId": "CE81AD36-ACD1-4C6C-8E7C-5326D1DA3045", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:6.0.14:*:*:*:*:*:*:*", "matchCriteriaId": "D903956B-14F5-4177-AF12-0A5F1846D3C4", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:6.0.15:*:*:*:*:*:*:*", "matchCriteriaId": "81F847DC-A2F5-456C-9038-16A0E85F4C3B", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:6.0.16:*:*:*:*:*:*:*", "matchCriteriaId": "AF3EBD00-1E1E-452D-AFFB-08A6BD111DDD", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:6.0.17:*:*:*:*:*:*:*", "matchCriteriaId": "C6B93A3A-D487-4CA1-8257-26F8FE287B8B", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:6.0.18:*:*:*:*:*:*:*", "matchCriteriaId": "BD8802B2-57E0-4AA6-BC8E-00DE60468569", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:6.0.19:*:*:*:*:*:*:*", "matchCriteriaId": "8461DF95-18DC-4BF5-A703-7F19DA88DC30", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:6.0.20:*:*:*:*:*:*:*", "matchCriteriaId": "1F4C9BCF-9C73-4991-B02F-E08C5DA06EBA", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:6.0.24:*:*:*:*:*:*:*", "matchCriteriaId": "2823789C-2CB6-4300-94DB-BDBE83ABA8E3", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:6.0.26:*:*:*:*:*:*:*", "matchCriteriaId": "C5416C76-46ED-4CB1-A7F8-F24EA16DE7F9", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:6.0.27:*:*:*:*:*:*:*", "matchCriteriaId": "A61429EE-4331-430C-9830-58DCCBCBCB58", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:6.0.28:*:*:*:*:*:*:*", "matchCriteriaId": "31B3593F-CEDF-423C-90F8-F88EED87DC3E", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:6.0.29:*:*:*:*:*:*:*", "matchCriteriaId": "AE7862B2-E1FA-4E16-92CD-8918AB461D9A", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:7.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "0F8C62EF-1B67-456A-9C66-755439CF8556", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*", "matchCriteriaId": "33E9607B-4D28-460D-896B-E4B7FA22441E", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:7.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "A819E245-D641-4F19-9139-6C940504F6E7", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:7.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "8C381275-10C5-4939-BCE3-0D1F3B3CB2EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:7.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "7205475A-6D04-4042-B24E-1DA5A57029B7", "vulnerable": true}, {"criteria": "cpe:2.3:a:apache:tomcat:7.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "08022987-B36B-4F63-88A5-A8F59195DF4A", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in the Manager application in Apache Tomcat 6.0.12 through 6.0.29 and 7.0.0 through 7.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) orderBy or (2) sort parameter to sessionsList.jsp, or unspecified input to (3) sessionDetail.jsp or (4) java/org/apache/catalina/manager/JspHelper.java, related to use of untrusted web applications."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de ejecuci\u00f3n de secuencias de comandos en sitios cruzados en la aplicaci\u00f3n Manager en Apache Tomcat v6.0.12 hasta v6.0.29 y v7.0.0 hasta v7.0.4 permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s del par\u00e1metro (1) orderBy o (2) sort a sessionsList.jsp, o una entrada no especificada a (3) sessionDetail.jsp o (4) java/org/apache/catalina/manager/JspHelper.java, relacionado con la utilizaci\u00f3n de aplicaciones web que no son de confianza."}], "id": "CVE-2010-4172", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2010-11-26T20:00:04.750", "references": [{"source": "secalert@redhat.com", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-11/0285.html"}, {"source": "secalert@redhat.com", "url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"}, {"source": "secalert@redhat.com", "url": "http://marc.info/?l=bugtraq&m=139344343412337&w=2"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/42337"}, {"source": "secalert@redhat.com", "url": "http://secunia.com/advisories/43019"}, {"source": "secalert@redhat.com", "url": "http://secunia.com/advisories/45022"}, {"source": "secalert@redhat.com", "url": "http://secunia.com/advisories/57126"}, {"source": "secalert@redhat.com", "url": "http://securitytracker.com/id?1024764"}, {"source": "secalert@redhat.com", "url": "http://support.apple.com/kb/HT5002"}, {"source": "secalert@redhat.com", "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5098550.html"}, {"source": "secalert@redhat.com", "url": "http://svn.apache.org/viewvc?view=revision&revision=1037778"}, {"source": "secalert@redhat.com", "url": "http://svn.apache.org/viewvc?view=revision&revision=1037779"}, {"source": "secalert@redhat.com", "url": "http://tomcat.apache.org/security-6.html"}, {"source": "secalert@redhat.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://tomcat.apache.org/security-7.html"}, {"source": "secalert@redhat.com", "url": "http://www.redhat.com/support/errata/RHSA-2011-0791.html"}, {"source": "secalert@redhat.com", "url": "http://www.redhat.com/support/errata/RHSA-2011-0896.html"}, {"source": "secalert@redhat.com", "url": "http://www.redhat.com/support/errata/RHSA-2011-0897.html"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/archive/1/514866/100/0/threaded"}, {"source": "secalert@redhat.com", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/45015"}, {"source": "secalert@redhat.com", "url": "http://www.ubuntu.com/usn/USN-1048-1"}, {"source": "secalert@redhat.com", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2010/3047"}, {"source": "secalert@redhat.com", "url": "http://www.vupen.com/english/advisories/2011/0203"}, {"source": "secalert@redhat.com", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=656246"}, {"source": "secalert@redhat.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/63422"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://archives.neohapsis.com/archives/fulldisclosure/2010-11/0285.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=139344343412337&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/42337"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/43019"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/45022"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/57126"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securitytracker.com/id?1024764"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://support.apple.com/kb/HT5002"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5098550.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://svn.apache.org/viewvc?view=revision&revision=1037778"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://svn.apache.org/viewvc?view=revision&revision=1037779"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://tomcat.apache.org/security-6.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://tomcat.apache.org/security-7.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.redhat.com/support/errata/RHSA-2011-0791.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.redhat.com/support/errata/RHSA-2011-0896.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.redhat.com/support/errata/RHSA-2011-0897.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/514866/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/45015"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.ubuntu.com/usn/USN-1048-1"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2010/3047"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2011/0203"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=656246"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/63422"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "ant-0:1.7.1-13.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "antlr-0:2.7.7-7.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "bcel-0:5.2-8.1.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "cglib-0:2.2-5.1.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "dom4j-0:1.6.1-11.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "ecj-1:3.3.1.1-3.2.2.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "glassfish-jaf-0:1.1.0-6.1.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "glassfish-javamail-0:1.4.2-0.4.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "glassfish-jsf-0:1.2_13-2.2.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "hibernate3-1:3.3.2-1.5.GA_CP04.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "hibernate3-annotations-0:3.4.0-3.3.GA_CP04.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "hibernate3-commons-annotations-0:3.1.0-1.8.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "hibernate3-ejb-persistence-3.0-api-1:1.0.2-3.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "hibernate3-entitymanager-0:3.4.0-4.3.GA_CP04.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "httpd22-0:2.2.17-14.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-beanutils-0:1.8.0-4.1.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-chain-0:1.2-2.2.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-codec-0:1.3-9.1.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-collections-0:3.2.1-4.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-daemon-1:1.0.5-1.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-daemon-jsvc-1:1.0.5-1.4.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-dbcp-0:1.2.1-16.4.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-digester-0:1.8.1-8.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-el-0:1.0-19.2.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-fileupload-1:1.1.1-7.4.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-httpclient-1:3.1-1.1.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-io-0:1.4-1.3.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-launcher-0:1.1-4.6.1.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-logging-0:1.1.1-0.4.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-logging-jboss-0:1.1-10.2.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-modeler-0:2.0-4.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-pool-0:1.3-11.2.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-commons-validator-0:1.3.1-7.5.1.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-oro-0:2.0.8-3.3.2.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jakarta-taglibs-standard-0:1.1.1-9.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "javassist-0:3.12.0-1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jboss-common-core-0:2.2.17-1.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jboss-common-logging-jdk-0:2.1.2-1.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jboss-common-logging-spi-0:2.1.2-1.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jboss-javaee-0:5.0.1-2.9.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jcommon-0:1.0.16-1.2.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "jfreechart-0:1.0.13-2.3.2.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "log4j-0:1.2.14-18.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "mod_cluster-0:1.0.10-2.GA_CP01.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "mod_cluster-native-0:1.0.10-2.GA_CP01.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "mod_jk-0:1.2.31-1.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "mx4j-1:3.0.1-9.3.4.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "objectweb-asm-0:3.1-5.3.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "regexp-0:1.5-1.2.1.jdk6.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "struts12-0:1.2.9-3.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "tomcat5-0:5.5.33-14_patch_04.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "tomcat6-0:6.0.32-15_patch_03.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "tomcat-jkstatus-ant-0:1.2.31-2.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "tomcat-native-0:1.1.20-2.0.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "xalan-j2-0:2.7.1-5.3_patch_04.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "xerces-j2-0:2.9.1-3.patch01.1.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el4", "package": "xml-commons-1:1.3.04-7.12.ep5.el4", "product_name": "JBEWS 1.0 for RHEL 4", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0791", "cpe": "cpe:/o:redhat:enterprise_linux:6", "package": "tomcat6-0:6.0.24-33.el6", "product_name": "Red Hat Enterprise Linux 6", "release_date": "2011-05-19T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "ant-0:1.7.1-13.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "antlr-0:2.7.7-7.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "cglib-0:2.2-5.1.1.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "dom4j-0:1.6.1-11.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "ecj3-1:3.3.1.1-3.1.1.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "glassfish-jsf-0:1.2_13-3.1.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "hibernate3-1:3.3.2-1.4.GA_CP04.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "hibernate3-annotations-0:3.4.0-3.2.GA_CP04.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "hibernate3-commons-annotations-0:3.1.0-1.8.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "hibernate3-ejb-persistence-3.0-api-1:1.0.2-3.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "hibernate3-entitymanager-0:3.4.0-4.3.GA_CP04.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "httpd-0:2.2.17-11.1.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-beanutils-0:1.8.0-4.1.2.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-chain-0:1.2-2.2.1.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-codec-0:1.3-9.2.1.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-collections-0:3.2.1-4.1.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-daemon-1:1.0.5-1.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-daemon-jsvc-1:1.0.5-1.4.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-dbcp-0:1.2.1-16.4.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-digester-0:1.8.1-8.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-fileupload-1:1.1.1-7.4.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-httpclient-1:3.1-1.2.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-io-0:1.4-1.3.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-logging-0:1.1.1-0.4.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-logging-jboss-0:1.1-10.2.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-pool-0:1.3-11.2.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-commons-validator-0:1.3.1-7.5.2.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-oro-0:2.0.8-3.3.2.1.1.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jakarta-taglibs-standard-0:1.1.1-9.1.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "javassist-0:3.12.0-1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jboss-common-core-0:2.2.17-1.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jboss-common-logging-jdk-0:2.1.2-1.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jboss-common-logging-spi-0:2.1.2-1.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jboss-javaee-0:5.0.1-2.9.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jcommon-0:1.0.16-1.2.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "jfreechart-0:1.0.13-2.3.2.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "mod_cluster-0:1.0.10-2.1.GA_CP01.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "mod_cluster-native-0:1.0.10-2.1.GA_CP01.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "mod_jk-0:1.2.31-1.1.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "objectweb-asm-0:3.1-5.3.1.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "struts12-0:1.2.9-3.1.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "tomcat5-0:5.5.33-16_patch_04.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "tomcat6-0:6.0.32-15.1_patch_03.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "tomcat-jkstatus-ant-0:1.2.31-2.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "tomcat-native-0:1.1.20-2.1.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "xalan-j2-0:2.7.1-5.3_patch_04.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "xerces-j2-0:2.9.1-3.patch01.1.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el5", "package": "xml-commons-0:1.3.04-7.10.jdk6.ep5.el5", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 5", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "ant-0:1.7.1-14.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "antlr-0:2.7.7-7.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "cglib-0:2.2-5.4.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "dom4j-0:1.6.1-11.1.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "ecj3-1:3.3.1.1-4.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "glassfish-jsf-0:1.2_13-3.1.4.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "hibernate3-1:3.3.2-1.8.GA_CP04.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "hibernate3-annotations-0:3.4.0-3.5.GA_CP04.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "hibernate3-commons-annotations-0:3.1.0-1.8.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "hibernate3-ejb-persistence-3.0-api-1:1.0.2-3.3.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "hibernate3-entitymanager-0:3.4.0-4.4.GA_CP04.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "httpd-0:2.2.17-11.2.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-beanutils-0:1.8.0-9.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-chain-0:1.2-2.2.2.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-codec-0:1.3-12.1.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-collections-0:3.2.1-4.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-daemon-1:1.0.5-1.1.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-daemon-jsvc-1:1.0.5-1.4.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-dbcp-0:1.2.1-16.2.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-digester-0:1.8.1-8.1.1.1.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-fileupload-1:1.1.1-7.5.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-httpclient-1:3.1-1.2.2.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-io-0:1.4-4.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-logging-0:1.1.1-1.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-logging-jboss-0:1.1-10.2.2.1.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-pool-0:1.3-15.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-commons-validator-0:1.3.1-7.5.2.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-oro-0:2.0.8-7.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jakarta-taglibs-standard-0:1.1.1-12.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "javassist-0:3.12.0-3.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jboss-common-core-0:2.2.17-1.2.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jboss-common-logging-jdk-0:2.1.2-1.2.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jboss-common-logging-spi-0:2.1.2-1.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jboss-javaee-0:5.0.1-2.9.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jcommon-0:1.0.16-1.2.2.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "jfreechart-0:1.0.13-2.3.2.1.2.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "mod_cluster-0:1.0.10-2.2.GA_CP01.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "mod_cluster-native-0:1.0.10-2.1.1.GA_CP01.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "mod_jk-0:1.2.31-1.1.2.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "objectweb-asm31-0:3.1-12.1.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "struts12-0:1.2.9-3.1.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "tomcat5-0:5.5.33-15_patch_04.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "tomcat6-0:6.0.32-14_patch_03.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "tomcat-jkstatus-ant-0:1.2.31-2.1.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "tomcat-native-0:1.1.20-2.1.2.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "xalan-j2-0:2.7.1-5.3_patch_04.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "xerces-j2-0:2.9.1-8.patch01.1.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0897", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1::el6", "package": "xml-commons-0:1.3.04-7.14.ep5.el6", "product_name": "Red Hat JBoss Enterprise Web Server 1 for RHEL 6", "release_date": "2011-06-22T00:00:00Z"}, {"advisory": "RHSA-2011:0896", "cpe": "cpe:/a:redhat:jboss_enterprise_web_server:1.0", "product_name": "Red Hat JBoss Web Server 1.0", "release_date": "2011-06-22T00:00:00Z"}], "bugzilla": {"description": "tomcat: cross-site-scripting vulnerability in the manager application", "id": "656246", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=656246"}, "csaw": false, "cvss": {"cvss_base_score": "4.3", "cvss_scoring_vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "status": "verified"}, "cwe": "CWE-79", "details": ["Multiple cross-site scripting (XSS) vulnerabilities in the Manager application in Apache Tomcat 6.0.12 through 6.0.29 and 7.0.0 through 7.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) orderBy or (2) sort parameter to sessionsList.jsp, or unspecified input to (3) sessionDetail.jsp or (4) java/org/apache/catalina/manager/JspHelper.java, related to use of untrusted web applications."], "name": "CVE-2010-4172", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Not affected", "package_name": "tomcat5", "product_name": "Red Hat Enterprise Linux 5"}], "public_date": "2010-11-22T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2010-4172\nhttps://nvd.nist.gov/vuln/detail/CVE-2010-4172"], "threat_severity": "Moderate"}

{}