ID de Prueba:	1.3.6.1.4.1.25623.1.0.11438
Categoría:	Web Servers
Título:	Apache Tomcat < 3.3.1a Directory Listing and File Disclosure Vulnerability - Active Check
Resumen:	Apache Tomcat is prone to a directory listing and a file; disclosure vulnerability.
Descripción:	Summary: Apache Tomcat is prone to a directory listing and a file disclosure vulnerability. Vulnerability Insight: The flaw allows remote attackers to potentially list directories even with an index.html or other file present, or obtain unprocessed source code for a JSP file. Affected Software/OS: Apache Tomcat prior to version 3.3.1a when used with JDK 1.3.1 or earlier. Solution: Update to version 3.3.1a or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0042 BugTraq ID: 6721 http://www.securityfocus.com/bid/6721 Bugtraq: 20030130 Apache Jakarta Tomcat 3 URL parsing vulnerability (Google Search) http://marc.info/?l=bugtraq&m=104394568616290&w=2 Computer Incident Advisory Center Bulletin: N-060 http://www.ciac.org/ciac/bulletins/n-060.shtml Debian Security Information: DSA-246 (Google Search) http://www.debian.org/security/2003/dsa-246 HPdes Security Advisory: HPSBUX0303-249 http://www.securityfocus.com/advisories/5111 http://secunia.com/advisories/7972 http://secunia.com/advisories/7977 XForce ISS Database: tomcat-null-directory-listing(11194) https://exchange.xforce.ibmcloud.com/vulnerabilities/11194 Common Vulnerability Exposure (CVE) ID: CVE-2003-0043 BugTraq ID: 6722 http://www.securityfocus.com/bid/6722 XForce ISS Database: tomcat-webxml-read-files(11195) https://exchange.xforce.ibmcloud.com/vulnerabilities/11195
Copyright	Copyright (C) 2003 A.D.Consulting

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.