about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive

exploits , vulnerabilities , articles , Apache Tomcat < 5.5.17 Remote Directory Listing Vulnerability




2006-07-23 Apache Tomcat < 5.5.17 Remote Directory Listing Vulnerability 
Rated as : High Risk

ScanAlert Security Advisory - http://www.scanalert.com

Directory Listing in Apache Tomcat 5.x.x

Date: 07/21/2006
Vendor: Apache
Package: Tomcat
Versions: 5.x.x (5.0.28, 5.5.12, 5.5.9, and 5.5.7 . Confirmed)
Credit: ScanAlert.s Enterprise Services Team.

Overview:
Apache Tomcat is the servlet container that is used in the official
Reference Implementation 
for the Java Servlet and JavaServer Pages technologies.

Vulnerabilities:
Apache Tomcat can be forced to reveal a complete directory listing for any
directory by requesting 
a mapped file extension prepended with a semicolon, a reserved character.
The file does not need to exist.

Examples:
http://www.sitexyz.com/;index.jsp
http://www.sitexyz.com/help/;help.do


securitydot.net - 2006-07-23

Advertising

Copyright 2007, SecurityDot
Sat, 21 Nov 2009 06:44:37 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
Asa THERION www.tamil WWW .TAMIL modernbill news for c t77t CMS is Fre phpbb 2.0. hayfa wahb WWW .TAMIL Www.Indian pictures s Group sex Forens www.nd23.c news for c www.shunfu free keylo trisha pic 200 /compo Musika H...raru/p buts www.sexygi www.0516my worldsex.c ipb+v2.1.3 PHP guestb worldsex.c www.huixin www.ax480. www.conghu index.php% index.php% www.sex.18 tulgusex.c HINDI ACTO +...t%252F group crea www.gzqizh XEMPHIMXEC nicebreast centos apa www.aiyind Crack Data vedio film HINDI SONG www.021-pi news for C