Description

The HTTP/1.1 connector in Apache Tomcat 4.1.15 through 4.1.40 does not reject NULL bytes in a URL when allowLinking is configured, which allows remote attackers to read JSP source files and obtain sensitive information.

Remediation

References

CVE-2005-4836

Related Vulnerabilities

Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2019-14893)

WordPress Plugin WordPress Landing Pages Remote Code Execution (1.9.0)

Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-12156)

PHP Double Free Vulnerability (CVE-2016-5768)

Oracle HTTP Server CVE-2018-2760 Vulnerability (CVE-2018-2760)

Severity

High

Classification

CVE-2005-4836 CWE-200

Tags

Missing Update Known Vulnerabilities