about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive

exploits , vulnerabilities , articles , Apache Tomcat < 5.5.17 Remote Directory Listing Vulnerability




2006-07-23 Apache Tomcat < 5.5.17 Remote Directory Listing Vulnerability 
Rated as : High Risk

ScanAlert Security Advisory - http://www.scanalert.com

Directory Listing in Apache Tomcat 5.x.x

Date: 07/21/2006
Vendor: Apache
Package: Tomcat
Versions: 5.x.x (5.0.28, 5.5.12, 5.5.9, and 5.5.7 . Confirmed)
Credit: ScanAlert.s Enterprise Services Team.

Overview:
Apache Tomcat is the servlet container that is used in the official
Reference Implementation 
for the Java Servlet and JavaServer Pages technologies.

Vulnerabilities:
Apache Tomcat can be forced to reveal a complete directory listing for any
directory by requesting 
a mapped file extension prepended with a semicolon, a reserved character.
The file does not need to exist.

Examples:
http://www.sitexyz.com/;index.jsp
http://www.sitexyz.com/help/;help.do


securitydot.net - 2006-07-23

Advertising

Copyright 2007, SecurityDot
Sat, 21 Nov 2009 05:18:47 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
free sexy bangladesh news for c mailsite e iamge sxey clam MOVELIVEXX t441t www.hupiao arab sex v t292t t685t Yabb2 bse siran arab sex v Hotgirleim dogsex.com crack data php-nuke 2 www.yiruis www.nd23.c www.ewvote www.kugouj www.indian tamil acto saxy girls kareena ka arkeia wourldsex. dogsexcom www.joy521 port 38683 www.indian olderpornv Privilege www.kamasu mambo Remo sex tapes dokeox 200 /admin www89com microsoft adultsix v www.znyx16 pinkysurf. www89com OpenSSH 4. Xxxfreevid VTUNNEL.CO www.2008sf