This content has been marked as final.
Show 3 replies
-
1. Re: Jboss Vunerability Workaround
penchan Jun 5, 2003 1:32 AM (in response to penchan)example... http://192.168.0.1/login.jsp%00
would show list the source code for the JSP file..
Regards,
Pen -
2. Re: Jboss Vunerability Workaround
marc_schoenefeld Jun 7, 2003 3:06 PM (in response to penchan)Also see the original bug report posted by
illegalaccess.org at
http://www.securityfocus.com/archive/1/323430
But there is no evidence that the tomcat
version is also vulnerable....
Sincerely
Marc -
3. Re: Jboss Vunerability Workaround
juhalindfors Jun 15, 2003 2:51 PM (in response to penchan)Jetty security hole has been fixed in 3.0.8 and 3.2.2 releases.