How to Buy
This script is Copyright (C) 2010-2016 Tenable Network Security, Inc.
The remote web server is affected by a cross-site scripting
The version of Apache Tomcat running on the remote web server is
affected by a cross-site scripting vulnerability due to a failure to
unauthenticated attacker can exploit this to execute arbitrary code by
using a URL containing encoded newline characters that are followed by
a request to a .jsp file that has a crafted file name.
See also :
Upgrade to Apache Tomcat version 4.1.29 or later.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 4.3
Public Exploit Available : true
Family: CGI abuses : XSS
Nessus Plugin ID: 47715 ()
Bugtraq ID: 5542
CVE ID: CVE-2002-1567
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.