Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Apache Tomcat < 3.3.1a Directory Listing and File Disclosure



The remote host may give an attacker information useful for future attacks


Apache Tomcat (prior to 3.3.1a) is prone to a directory listing and file disclosure vulnerability. An attacker may exploit this bug to get the listing of directories otherwise protected by an index.html file, or even to get the source code of the remote .jsp scripts.


Upgrade to Tomcat 3.3.1a or higher.