subject:"Bug#380361\: tomcat5\: CVE\-2006\-3835\: remote directory listing"

Bug#380361: tomcat5: CVE-2006-3835: remote directory listing

2006-08-01 Thread Arnaud Vandyck

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Alec Berryman wrote: > Package: tomcat5 > Severity: serious > Tags: security > > CVE-2006-3835: "Apache Tomcat 5 before 5.5.17 allows remote attackers to > list directories via a semicolon (;) preceding a filename with a mapped > extension, as demonst

Bug#380361: tomcat5: CVE-2006-3835: remote directory listing

2006-07-29 Thread Alec Berryman

Package: tomcat5 Severity: serious Tags: security -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 CVE-2006-3835: "Apache Tomcat 5 before 5.5.17 allows remote attackers to list directories via a semicolon (;) preceding a filename with a mapped extension, as demonstrated by URLs ending with /;index.j