Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

apache tomcat 3.3 vulnerabilities and exploits

(subscribe to this query)

NA
CVE-2002-1895
The servlet engine in Jakarta Apache Tomcat 3.3 and 4.0.4, when using IIS and the ajp1.3 connector, allows remote attackers to cause a denial of service (crash) via a large number of HTTP GET requests for an MS-DOS device such as AUX, LPT1, CON, or PRN....
Apache Tomcat 4.0.4Apache Tomcat 3.3
NA
CVE-2007-3384
Multiple cross-site scripting (XSS) vulnerabilities in examples/servlet/CookieExample in Apache Tomcat 3.3 through 3.3.2 allow remote attackers to inject arbitrary web script or HTML via the (1) Name or (2) Value field, related to error messages....
Apache Tomcat 3.3.1aApache Tomcat 3.3.2Apache Tomcat 3.3Apache Tomcat 3.3.1
NA
CVE-2003-0042
Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, allows remote attackers to list directories even with an index.html or other file present, or obtain unprocessed source code for a JSP file, via a URL containing a null character....
Apache Tomcat 3.1.1Apache Tomcat 3.2Apache Tomcat 3.0Apache Tomcat 3.1Apache Tomcat 3.3.1Apache Tomcat 3.2.1Apache Tomcat 3.2.3Apache Tomcat 3.2.4Apache Tomcat 3.3
NA
CVE-2003-0043
Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, uses trusted privileges when processing the web.xml file, which could allow remote attackers to read portions of some files through the web.xml file....
Apache Tomcat 3.0Apache Tomcat 3.1Apache Tomcat 3.3.1Apache Tomcat 3.2.4Apache Tomcat 3.3Apache Tomcat 3.1.1Apache Tomcat 3.2Apache Tomcat 3.2.1Apache Tomcat 3.2.3
NA
CVE-2003-0044
Multiple cross-site scripting (XSS) vulnerabilities in the (1) examples and (2) ROOT web applications for Jakarta Tomcat 3.x through 3.3.1a allow remote attackers to insert arbitrary web script or HTML....
Apache Tomcat 3.3Apache Tomcat 3.3.1Apache Tomcat 3.2.3Apache Tomcat 3.2.4Apache Tomcat 3.0Apache Tomcat 3.1Apache Tomcat 3.1.1Apache Tomcat 3.3.1aApache Tomcat 3.2Apache Tomcat 3.2.1