CVE Vulnerabilities

CVE-2003-0043

Published: Feb 07, 2003 | Modified: Oct 10, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, uses trusted privileges when processing the web.xml file, which could allow remote attackers to read portions of some files through the web.xml file.

Affected Software

Name Vendor Start Version End Version
Tomcat Apache 3.0 (including) 3.0 (including)
Tomcat Apache 3.1 (including) 3.1 (including)
Tomcat Apache 3.1.1 (including) 3.1.1 (including)
Tomcat Apache 3.2 (including) 3.2 (including)
Tomcat Apache 3.2.1 (including) 3.2.1 (including)
Tomcat Apache 3.2.3 (including) 3.2.3 (including)
Tomcat Apache 3.2.4 (including) 3.2.4 (including)
Tomcat Apache 3.3 (including) 3.3 (including)
Tomcat Apache 3.3.1 (including) 3.3.1 (including)

References