| VID |
22113 |
| Severity |
30 |
| Port |
8080, ... |
| Protocol |
TCP |
| Class |
Servlet |
| Detailed Description |
The Apache Tomcat is vulnerable XSS attacks by issueing requests for DOS Device names.
Apache Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies.
By making requests for DOS Device names it is possible to cause Tomcat to throw an exception, allowing Cross Site Scripting (XSS) attacks, e.g:
tomcat-server/COM2.IMG%20src='Javascript:alert(document.domain)'
(angle brackets omitted)
The exception also reveals the physical path of the Tomcat installation.
* References:
http://www.securiteam.com/windowsntfocus/5KP0L007FI.html
http://www.westpoint.ltd.uk/advisories/wp-02-0008.txt |
| Recommendation |
Upgrade to Apache Tomcat v4.1.3 beta or later. |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
