Unauthorizaed Apache Tomcat JSP source code disclosure

[EN] securityvulns.ru
no-pyccku

Unauthorizaed Apache Tomcat JSP source code disclosure
Published: 28.09.2002
Source: BUGTRAQ
SecurityVulns ID: 2299
Type: remote
Level: 5/10
Description: org.apache.catalina.servlets.DefaultServ let allows to access any JSP code.

Affected: APACHE : Tomcat 4.0
APACHE : Tomcat 4.1

Original document Rossen Raykov , JSP source code exposure in Tomcat 4.x (28.09.2002)

Discuss: Read or add your comments to this news (0 comments)