Description

Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, uses trusted privileges when processing the web.xml file, which could allow remote attackers to read portions of some files through the web.xml file.

Remediation

References

CVE-2003-0043

Related Vulnerabilities

Frontaccounting Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2019-5720)

WordPress Plugin Limit Attempts by BestWebSoft Cross-Site Scripting (1.1.7)

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38265)

WordPress Plugin TheCartPress eCommerce Shopping Cart Multiple Vulnerabilities (1.5.3.6)

WebLogic CVE-2021-2397 Vulnerability (CVE-2021-2397)

Severity

Medium

Classification

CVE-2003-0043

Tags

Missing Update Known Vulnerabilities