[19992] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

CHINANSL Security Advisory(CSA-200110)

daemon@ATHENA.MIT.EDU (lovehacker)
Mon Apr 2 01:16:23 2001

Message-ID:  <20010402034900.20042.qmail@securityfocus.com>
Date:         Mon, 2 Apr 2001 03:49:00 -0000
Reply-To: lovehacker@263.NET
From: lovehacker <lovehacker@263.NET>
To: BUGTRAQ@SECURITYFOCUS.COM

Topic:Tomcat 4.0-b2 for winnt/2000 show ".jsp" 
source Vulnerability.

vulnerable:
winnt/2000(maybe for other operating system also)
+ Tomcat 4.0-b2

discussion:
A security vulnerability has been found in Windows 
NT/2000 systems that have Tomcat 4.0-b2 installed. 
The 
vulnerability allows remote attackers to get ".jsp" 
source.

exploits:
http://target:8080/examples/snp/snoop%252ejsp

solution:
None

Copyright 2000-2001 CHINANSL. All Rights 
Reserved. Terms of use. 
CHINANSL Security Team 
<lovehacker@chinansl.com> 
CHINANSL INFORMATION TECHNOLOGY CO.,LTD 
(http://www.chinansl.com)


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[19992] in bugtraq

CHINANSL Security Advisory(CSA-200110)

daemon@ATHENA.MIT.EDU (lovehacker)Mon Apr 2 01:16:23 2001

daemon@ATHENA.MIT.EDU (lovehacker)
Mon Apr 2 01:16:23 2001