ID de Prueba:	1.3.6.1.4.1.25623.1.0.11438
Categoría:	Web Servers
Título:	Apache Tomcat Directory Listing and File disclosure
Resumen:	Apache Tomcat (prior to 3.3.1a) is prone to a directory listing and file; disclosure vulnerability.
Descripción:	Summary: Apache Tomcat (prior to 3.3.1a) is prone to a directory listing and file disclosure vulnerability. Vulnerability Insight: The flaw allows remote attackers to potentially list directories even with an index.html or other file present, or obtain unprocessed source code for a JSP file. Solution: Update Tomcat to version 4.1.18 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Referencia Cruzada:	BugTraq ID: 6721 Common Vulnerability Exposure (CVE) ID: CVE-2003-0042 http://www.securityfocus.com/bid/6721 Bugtraq: 20030130 Apache Jakarta Tomcat 3 URL parsing vulnerability (Google Search) http://marc.info/?l=bugtraq&m=104394568616290&w=2 Computer Incident Advisory Center Bulletin: N-060 http://www.ciac.org/ciac/bulletins/n-060.shtml Debian Security Information: DSA-246 (Google Search) http://www.debian.org/security/2003/dsa-246 HPdes Security Advisory: HPSBUX0303-249 http://www.securityfocus.com/advisories/5111 http://secunia.com/advisories/7972 http://secunia.com/advisories/7977 XForce ISS Database: tomcat-null-directory-listing(11194) https://exchange.xforce.ibmcloud.com/vulnerabilities/11194
Copyright	Copyright (C) 2003 A.D.Consulting

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.