Description

Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, uses trusted privileges when processing the web.xml file, which could allow remote attackers to read portions of some files through the web.xml file.

Remediation

References

CVE-2003-0043

Related Vulnerabilities

WordPress Plugin User Role by BestWebSoft Cross-Site Scripting (1.5.1)

Chamilo Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32925)

Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2020-25689)

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2025-43822)

WordPress Plugin Chained Quiz Multiple Cross-Site Scripting Vulnerabilities (0.9.8)

Severity

Medium

Classification

CVE-2003-0043

Tags

Missing Update Known Vulnerabilities