Lucene search
MitreCVELIST:CVE-2003-0042HistoryJan 29, 2003 - 5:00 a.m.
CVE-2003-0042
2003-01-2905:00:00
mitre
www.cve.org
1
Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, allows remote attackers to list directories even with an index.html or other file present, or obtain unprocessed source code for a JSP file, via a URL containing a null character.
References
jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/
jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txt
marc.info/?l=bugtraq&m=104394568616290&w=2
secunia.com/advisories/7972
secunia.com/advisories/7977
www.ciac.org/ciac/bulletins/n-060.shtml
www.debian.org/security/2003/dsa-246
www.securityfocus.com/advisories/5111
www.securityfocus.com/bid/6721
exchange.xforce.ibmcloud.com/vulnerabilities/11194
Related
github
github
Jakarta Tomcat Directory Listing vulnerability
2022-04-29 01:25:43
osv
osv
Jakarta Tomcat Directory Listing vulnerability
2022-04-29 01:25:43
tomcat - information exposure, cross site scripting
2003-01-29 00:00:00
cve
cve
CVE-2003-0042
2003-02-07 05:00:00
nvd
nvd
CVE-2003-0042
2003-02-07 05:00:00
openvas
openvas
Apache Tomcat < 3.3.1a Directory Listing and File Disclosure Vulnerability - Active Check
2005-11-03 00:00:00
Debian Security Advisory DSA 246-1 (tomcat)
2008-01-17 00:00:00
Debian Security Advisory DSA 246-1 (tomcat)
2008-01-17 00:00:00
tomcat
tomcat
Fixed in Apache Tomcat 3.3.1a
2003-01-27 00:00:00
nessus
nessus
Apache Tomcat Directory Listing and File Disclosure
2003-03-22 00:00:00
Debian DSA-246-1 : tomcat - information exposure, XSS
2004-09-29 00:00:00
debian
debian