August 6, 2001

Caldera: Tomcat unauthorized access vulnerability

Author: JT Smith

From LinuxSecurity.com: "There are several security problems with Jakarta-Tomcat, a Java
Servlet Engine, shipped as part of OpenLinux 3.1 Server. Several
vulnerabilities allowed attackers to view files in the system.
A second problem allowed so-called cross-site scripting, where
a hostile Web server can feed JavaScript or other code to a web
browser, making it appear to originate from the server running
tomcat."

Category:

  • Linux
Click Here!