View/Download Test Cases

Test Suite #95: apache-tomcat-5.5.13

Created by: SAMATE Team Staff on 2014-08-01
Size: 37 test cases
Description: Open source software implementation of the Java Servlet and JavaServer Pages technologies. Contains CVEs.

To view a specific test case, click on ID of the test case (second column)
To download specific test cases, select them then click on "Download selected test cases " icon at the top right of the page

Results: 37 test cases in 2 pages. Pages: 1 2
Go to page:

Select	Test Case ID	Submission Date	Language	Type of Artifact	Status	Description	Weakness	Bad Good Mixed
	149003	2014-08-01	Java	Source Code		apache-tomcat-5.5.13	CWE-000: Not Determined CWE-020: Improper Input Validation CWE-022: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-200: Information Exposure CWE-255: Credentials Management CWE-264: Permissions, Privileges, and Access Controls CWE-327: Use of a Broken or Risky Cryptographic Algorithm CWE-391: Unchecked Error Condition CWE-614: Sensitive Cookie in HTTPS Session Without 'Secure' Attribute CWE-732: Incorrect Permission Assignment for Critical Resource
	149002	2014-08-01	Java	Source Code		CVE-2011-2204	CWE-200: Information Exposure
	149001	2014-08-01	Java	Source Code		CVE-2011-2526	CWE-020: Improper Input Validation
	149000	2014-08-01	Java	Source Code		CVE-2011-3190	CWE-264: Permissions, Privileges, and Access Controls
	148999	2014-08-01	Java	Source Code		CVE-2010-1157	CWE-200: Information Exposure
	148998	2014-08-01	Java	Source Code		CVE-2010-2227	CWE-020: Improper Input Validation
	148997	2014-08-01	Java	Source Code		CVE-2010-3718	CWE-732: Incorrect Permission Assignment for Critical Resource
	148996	2014-08-01	Java	Source Code		CVE-2011-0013	CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
	148995	2014-08-01	Java	Source Code		CVE-2006-7195	CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
	148994	2014-08-01	Java	Source Code		CVE-2006-7196 and CVE-2009-0781	CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
	148993	2014-08-01	Java	Source Code		CVE-2006-7197	CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
	148992	2014-08-01	Java	Source Code		CVE-2007-0450	CWE-022: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
	148991	2014-08-01	Java	Source Code		CVE-2007-1355	CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
	148990	2014-08-01	Java	Source Code		CVE-2007-1858	CWE-327: Use of a Broken or Risky Cryptographic Algorithm
	148989	2014-08-01	Java	Source Code		CVE-2007-2449	CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
	148988	2014-08-01	Java	Source Code		CVE-2007-2450 and CVE-2007-3386	CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
	148987	2014-08-01	Java	Source Code		CVE-2007-3382	CWE-200: Information Exposure
	148986	2014-08-01	Java	Source Code		CVE-2007-3385	CWE-200: Information Exposure
	148985	2014-08-01	Java	Source Code		CVE-2007-5333	CWE-200: Information Exposure
	148984	2014-08-01	Java	Source Code		CVE-2007-5342	CWE-264: Permissions, Privileges, and Access Controls

1 2
Total of selected test cases: 37