Jakarta Tomcat prior to 3.3.1a, when used with JDK 1.3.1 or earlier, uses trusted privileges when processing the web.xml file, which could allow remote malicious users to read portions of some files through the web.xml file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache tomcat 3.0 |
||
apache tomcat 3.1 |
||
apache tomcat 3.1.1 |
||
apache tomcat 3.2 |
||
apache tomcat 3.2.1 |
||
apache tomcat 3.2.3 |
||
apache tomcat 3.2.4 |
||
apache tomcat 3.3 |
||
apache tomcat 3.3.1 |