Debian Security Advisory DSA 246-1 (tomcat)

The remote host is missing an update to tomcat announced via advisory DSA 246-1. OpenVAS Vulnerability Test $Id: deb2461.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 246-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

CVE-2003-0044

CVE-2003-0044 covers multiple cross-site scripting (XSS) vulnerabilities in the Jakarta Tomcat 3.x line (through 3.3.1a) affecting the (1) examples and (2) ROOT web applications. Remote attackers could inject arbitrary script/HTML due to XSS in these components. This is documented across sources ...