Question: Tomcat 3.2.1 dir. traversal vuln.

• Previous message: Marek Roy: "Internal IP Address Disclosure in Microsoft-IIS 4.0 & 5.0"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Is this system only vulnerable if you use Tomcat as a web-server?
I run apache-1.3.19 as a web-server on a Linux kernel 2.4.2. Apache uses
mod_jk to forward pages to the tomcat-3.2.1 server. None of the exploits
described on http://www.securityfocus.com/bid/2518 worked on this system.

--
regards

Gustav Jansen
1AB5 1DD3 4412 9F03 1A4D  9C64 4763 DD26 62DA 54BF

• Next message: Pete Finnigan: "Re: vulnerability in oracle binary in Oracle 8.0.5 - 8.1.6"
• Previous message: Marek Roy: "Internal IP Address Disclosure in Microsoft-IIS 4.0 & 5.0"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Aug 08 2001 - 08:24:55 PDT