10 matches found
Apache Tomcat 3.1 Path Revealing Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1531/info A vulnerability exists in the JSP portion of the Tomcat package, version 3.1, from the Apache Software Foundation. Upon hitting an nonexistent JSP file, too much information is presented by the server as part of...
Advisory: Bonsai XSS and Physical Path Revealing Vulnerabilities
Author: Stan Bubrouski Date: 19 August 2002 Product: Bonsai Versions Affected: AllCurrent and CVS all vulnerable Severity: Cross Site Scripting is possible in several places due to a lack of stripping of tags from input. Some error messages also contain CSS and reveal the physical path of the...
Apache Httpd < 2.0.40 : Path revealing exposures
A path-revealing exposure was present in multiview type map negotiation such as the default error documents where a module would report the full path of the typemapped .var file when multiple documents or no documents could be served. Additionally a path-revealing exposure in cgi/cgid when Apache...
[LoWNOISE] Tomcat 3.2.1 ..0 DoS (WinNT)
-- LoWNOISE Aug/2001 -- Jakarta-Tomcat v3.2.1 Maybe Others Tested on: Apache 1.3.19 WinNT 4.0 The Problems: --Path Revealing and Method discovery Example: http://host/index.jsp Error: 500 Location: /index.jsp Internal Servlet Error: org.apache.jasper.JasperException: Unable to compile class for J...
[LoWNOISE] IBM Websphere/NetCommerce3 DoS and one more.
PRODUCT: IBM Websphere/NetCommerce3 vERSION: 3.1.2 , posibly others Unix, and NT +PATH REVEALING PROBLEM Exploit: http://host/cgi-bin/ncommerce3/ExecMacro/macro.d2w/NOEXISTINGHTMLBLOCK Result: DTWP029E: Net.Data is unable to locate the HTML block NOEXISTINGHTMLBLOCK in file...
DST2K0032.txt
============================================================================ Delphis Consulting Plc ============================================================================ Security Team Advisories 19/09/2000 [email protected] http://www.delphisplc.com/thinking/whitepapers/...
DST2K0032: Multiple Issues with Talentsoft WebPlus Application Server
============================================================================ Delphis Consulting Plc ============================================================================ Security Team Advisories 19/09/2000 [email protected] http://www.delphisplc.com/thinking/whitepapers/...
tomcat-3.1.path.txt
LoWNOISE Tomcat 3.1 Path Revealing Problem. ====PRODUCT: Release Build 3.1 of Tomcat from Apache Software Foundation. Tomcat is the combined JSP 1.1 and Servlets 2.2 reference implementation being developed under the Apache process. http://jakarta.apache.org ====PROBLEM: Path Revealing Problem0...
DST2K0010.txt
================================================================================ Delphis Consulting Plc ================================================================================ Security Team Advisories 05/06/2000 [email protected] http://www.delphisplc.com/thinking/whitepapers/...
DST2K0010: DoS & Path Revealing Vulnerability in Ceilidh v2.60a
========================================================================== ====== Delphis Consulting Plc ========================================================================== ====== Security Team Advisories 05/06/2000 [email protected] http://www.delphisplc.com/thinking/whitepapers...