CVE-2003-0042
CVE-2003-0042
Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, allows remote attackers to list directories even with an index.html or other file present, or obtain unprocessed source code for a JSP file, via a URL containing a null character.
Productos afectados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/22205no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txthttp://marc.info/?l=bugtraq&m=104394568616290&w=2http://secunia.com/advisories/7972http://secunia.com/advisories/7977https://exchange.xforce.ibmcloud.com/vulnerabilities/11194http://www.ciac.org/ciac/bulletins/n-060.shtmlhttp://www.debian.org/security/2003/dsa-246http://www.securityfocus.com/advisories/5111http://www.securityfocus.com/bid/6721