The Apache Tomcat servlet/JSP container has default files installed. These files should be removed as they may help an attacker to guess the exact version of the Apache Tomcat which is running on this host and may provide other useful information.
- Apple Safari Web Script Execution Vulnerabilites - June09
- Apple Safari 'SRC' Remote Denial Of Service Vulnerability
- Apache Tomcat Multiple Vulnerabilities - 02 Mar14
- Apple iTunes Insecure Permissions Privilege Escalation Vulnerability (Mac OS X)