CVE-2003-0044

Description

Multiple cross-site scripting (XSS) vulnerabilities in the (1) examples and (2) ROOT web applications for Jakarta Tomcat 3.x through 3.3.1a allow remote attackers to insert arbitrary web script or HTML.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/11196

http://www.securityfocus.com/bid/6720

http://www.securityfocus.com/advisories/5111

http://www.osvdb.org/9204

http://www.osvdb.org/9203

http://www.debian.org/security/2003/dsa-246

http://www.ciac.org/ciac/bulletins/n-060.shtml

http://secunia.com/advisories/7972

http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txt

http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3