Author: JT Smith
From LinuxSecurity.com: “There are several security problems with Jakarta-Tomcat, a Java
Servlet Engine, shipped as part of OpenLinux 3.1 Server. Several
vulnerabilities allowed attackers to view files in the system.
A second problem allowed so-called cross-site scripting, where
a hostile Web server can feed JavaScript or other code to a web
browser, making it appear to originate from the server running
tomcat.”
Servlet Engine, shipped as part of OpenLinux 3.1 Server. Several
vulnerabilities allowed attackers to view files in the system.
A second problem allowed so-called cross-site scripting, where
a hostile Web server can feed JavaScript or other code to a web
browser, making it appear to originate from the server running
tomcat.”
Category:
- Linux
