6.8
CVSSv2

CVE-2003-0044

Published: 07/02/2003 Updated: 20/11/2024

Vulnerability Summary

Multiple cross-site scripting (XSS) vulnerabilities in the (1) examples and (2) ROOT web applications for Jakarta Tomcat 3.x up to and including 3.3.1a allow remote malicious users to insert arbitrary web script or HTML.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

apache tomcat 3.0

apache tomcat 3.1

apache tomcat 3.1.1

apache tomcat 3.2

apache tomcat 3.2.1

apache tomcat 3.2.3

apache tomcat 3.2.4

apache tomcat 3.3

apache tomcat 3.3.1

apache tomcat 3.3.1a

Vendor Advisories

The developers of tomcat discovered several problems in tomcat version 3x The Common Vulnerabilities and Exposures project identifies the following problems: CAN-2003-0042: A maliciously crafted request could return a directory listing even when an indexhtml, indexjsp, or other welcome file is present File contents can be returned as we ...