4 matches found
Novell NetWare 6.0 Tomcat source.jsp Traversal Arbitrary File Access
The Apache Tomcat server distributed with NetWare 6.0 has a directory traversal vulnerability. As a result, sensitive information could be obtained from the NetWare server, such as the RCONSOLE password located in AUTOEXEC.NCF. Example :...
CVE-2000-1210
CVE-2000-1210 is a directory traversal vulnerability in the Tomcat source.jsp component prior to Apache Tomcat 3.1, allowing remote attackers to read arbitrary files by supplying a .. in the request. The issue affects the Tomcat distribution’s source.jsp endpoint and is caused by insufficient val...
CVE-2000-1210
Directory traversal vulnerability in source.jsp of Apache Tomcat before 3.1 allows remote attackers to read arbitrary files via a .. dot dot in the argument to source.jsp...
Fixed in Apache Tomcat 3.1
Important: Information disclosure CVE-2000-1210 source.jsp, provided as part of the examples, allows an attacker to read arbitrary files via a .. dot dot in the argument to source.jsp. Affects: 3.0...