CVSS: 7.5EPSS: 51%CPEs: 5EXPL: 3CVE-2006-3835 – Apache Tomcat 5 - Information Disclosure
https://notcve.org/view.php?id=CVE-2006-3835
25 Jul 2006 — Apache Tomcat 5 before 5.5.17 allows remote attackers to list directories via a semicolon (;) preceding a filename with a mapped extension, as demonstrated by URLs ending with /;index.jsp and /;help.do. Apache Tomcat 5 anterior a 5.5.17 permite a atacantes remotos listar directorios a través de un punto y coma (;) precedido de un nombre de archivo con una extensión mapeada, como se demostró con las URLs finalizadas con /;index.jsp y /;help.do. • https://www.exploit-db.com/exploits/28254 •
CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 0CVE-2005-4836
https://notcve.org/view.php?id=CVE-2005-4836
31 Dec 2005 — The HTTP/1.1 connector in Apache Tomcat 4.1.15 through 4.1.40 does not reject NULL bytes in a URL when allowLinking is configured, which allows remote attackers to read JSP source files and obtain sensitive information. • http://tomcat.apache.org/security-4.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 18%CPEs: 1EXPL: 3CVE-2005-4703 – Apache Tomcat 4.0.3 - Requests Containing MS-DOS Device Names Information Disclosure
https://notcve.org/view.php?id=CVE-2005-4703
31 Dec 2005 — Apache Tomcat 4.0.3, when running on Windows, allows remote attackers to obtain sensitive information via a request for a file that contains an MS-DOS device name such as lpt9, which leaks the pathname in an error message, as demonstrated by lpt9.xtp using Nikto. • https://www.exploit-db.com/exploits/31551 •
CVSS: 6.1EPSS: 12%CPEs: 1EXPL: 0CVE-2005-4838 – tomcat manager example DoS
https://notcve.org/view.php?id=CVE-2005-4838
31 Dec 2005 — Multiple cross-site scripting (XSS) vulnerabilities in the example web applications for Jakarta Tomcat 5.5.6 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) el/functions.jsp, (2) el/implicit-objects.jsp, and (3) jspx/textRotate.jspx in examples/jsp2/, as demonstrated via script in a request to snp/snoop.jsp. NOTE: other XSS issues in the manager were simultaneously reported, but these require admin access and do not cross privilege boundaries. • http://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065598.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 20%CPEs: 12EXPL: 0CVE-2005-3510 – tomcat DoS
https://notcve.org/view.php?id=CVE-2005-3510
06 Nov 2005 — Apache Tomcat 5.5.0 to 5.5.11 allows remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous requests to list a web directory that has a large number of files. • http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx •
CVSS: 7.5EPSS: 3%CPEs: 6EXPL: 0CVE-2005-3164
https://notcve.org/view.php?id=CVE-2005-3164
06 Oct 2005 — The AJP connector in Apache Tomcat 4.0.1 through 4.0.6 and 4.1.0 through 4.1.36, as used in Hitachi Cosminexus Application Server and standalone, does not properly handle when a connection is broken before request body data is sent in a POST request, which can lead to an information leak when "unsuitable request body data" is used for a different request, possibly related to Java Servlet pages. • http://jvn.jp/jp/JVN%2379314822/index.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.1EPSS: 74%CPEs: 2EXPL: 1CVE-2005-2090 – tomcat multiple content-length header poisioning
https://notcve.org/view.php?id=CVE-2005-2090
30 Jun 2005 — Jakarta Tomcat 5.0.19 (Coyote/1.1) and Tomcat 4.1.24 (Coyote/1.0) allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes Tomcat to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling." Apache Tomcat versions 8.0.0-RC1, 7.0.0 ... • http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/23.aspx •
CVSS: 7.5EPSS: 22%CPEs: 11EXPL: 0CVE-2005-0808
https://notcve.org/view.php?id=CVE-2005-0808
20 Mar 2005 — Apache Tomcat before 5.x allows remote attackers to cause a denial of service (application crash) via a crafted AJP12 packet to TCP port 8007. • http://www.hitachi-support.com/security_e/vuls_e/HS05-006_e/index-e.html •
CVSS: 7.5EPSS: 20%CPEs: 7EXPL: 2CVE-2003-0866 – Apache Tomcat 4.0.x - Non-HTTP Request Denial of Service
https://notcve.org/view.php?id=CVE-2003-0866
17 Oct 2003 — The Catalina org.apache.catalina.connector.http package in Tomcat 4.0.x up to 4.0.3 allows remote attackers to cause a denial of service via several requests that do not follow the HTTP protocol, which causes Tomcat to reject later requests. El paquete Catalina org.apache.catalina.connector.http en Tomcat 4.0.x a 4.0.3 permite a atacantes remotos causar una denegación de servicio mediante ciertas peticiones que no siguen el protocolo HTTP, lo que hace que Tomcat rechace peticiones subsiguientes. • https://www.exploit-db.com/exploits/23245 •
CVSS: 6.8EPSS: 48%CPEs: 1EXPL: 2CVE-2002-1567 – Apache Tomcat 4.1 - JSP Request Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2002-1567
19 Sep 2003 — Cross-site scripting (XSS) vulnerability in Apache Tomcat 4.1 allows remote attackers to execute arbitrary web script and steal cookies via a URL with encoded newlines followed by a request to a .jsp file whose name contains the script. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Apache Tomcat 4.1 permite a atacantes remotos ejecutar web script arbitrario y robar galletitas (cookies) mediante una URL con nuevas lineas codificadas seguidas por una petición a un fichero .jsp cuyo nomb... • https://www.exploit-db.com/exploits/21734 •