|Title:||Netware 6.0 Tomcat source code viewer|
|Summary:||Checks for the Netware 6.0 Tomcat source code viewer vulnerability|
The Apache Tomcat server distributed with Netware 6.0 has a directory
traversal vulnerability. As a result, sensitive information
could be obtained from the Netware server, such as the RCONSOLE
password located in AUTOEXEC.NCF.
Example : http://target/examples/jsp/source.jsp?%2e%2e/%2e%2e/%2e%2e/%2e%2e/system/autoexec.ncf
Common Vulnerability Exposure (CVE) ID: CVE-2000-1210|
Bugtraq: 20000322 Security bug in Apache project: Jakarta Tomcat (Google Search)
|Copyright||This script is Copyright (C) 2004 David Kyger|
|This is only one of 40246 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.