[19979] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: CHINANSL Security Advisory(CSA-200109)

daemon@ATHENA.MIT.EDU (Sverre H. Huseby)
Sun Apr 1 12:35:21 2001

Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Message-ID:  <20010401085615.D11310@thathost.com>
Date:         Sun, 1 Apr 2001 08:56:15 +0200
Reply-To: "Sverre H. Huseby" <shh@THATHOST.COM>
From: "Sverre H. Huseby" <shh@THATHOST.COM>
X-To:         lovehacker <lovehacker@263.NET>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To:  <20010331073009.17270.qmail@securityfocus.com>; from
              lovehacker@263.NET on Sat, Mar 31, 2001 at 07:30:09AM -0000

[lovehacker]

|   Topic:Tomcat 4.0-b1 for winnt/2000 show ".jsp"
|   source Vulnerability. [...]

|   exploits:
|   http://target:8080/examples/snp/snoop%2ejsp

This is the same problem I reported a few days ago.  It has already
been fixed in Tomcat 4.0 beta 2.


Sverre.

--
<URL:mailto:shh@thathost.com>
<URL:http://shh.thathost.com/>


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[19979] in bugtraq

Re: CHINANSL Security Advisory(CSA-200109)

daemon@ATHENA.MIT.EDU (Sverre H. Huseby)Sun Apr 1 12:35:21 2001

daemon@ATHENA.MIT.EDU (Sverre H. Huseby)
Sun Apr 1 12:35:21 2001