Apache Tomcat Information for VU#993544

Apache Tomcat fails to properly handle cookies containing single quotes



Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References



This vulnerability is addressed in Apache Tomcat 6.0.14. Please check the Apache Tomcat Security page for availability of fixes for this and other versions of Tomcat.

If you have feedback, comments, or additional information about this vulnerability, please send us email.