Look for "CVE-2007-0450" in
http://tomcat.apache.org/security-6.html
Regards,
Rainer
Sebastian Kruk wrote:
Hello,
just a quick question. Why URI like the following:
http://localhost:8080/jeromedl/mbb/filter/marcont:hasDomain/http%3A%2F%2Fdmoz.org%2FTop
result in error 400 - incorrect URI - noSlash error in Tomcat 6.0.13,
but were correctly handled in Tomcat 5.5 ?
After investigating a little I have noticed that the problem is in %2F
sequence (URI encoding of /).
Is there any HTTP specification detail that I have missed or is it, as I
think it is, a bug in Tomcat 6?
Thanks for any hints,
Cheers,
Sebastian
--------------------------------------------
-- Sebastian Ryszard Kruk
-- Lead Researcher, Project Manager
-- Semantic Infrastructure Lab, eLearning Cluster
-- Digital Enterprise Research Institute-- National University of
Ireland, Galway-- mailto: [EMAIL PROTECTED]
-- GG: 335067, Jabber: [EMAIL PROTECTED]
-- Skype: sebastiankruk
-- WWW: http://www.sebastiankruk.com/-- mobile (IRL): +353 85 7126591
-- VoIP (PL): +48 52 5110114
--------------------------------------------
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
--
kippdata
informationstechnologie GmbH Tel: 0228 98549 -0
Bornheimer Str. 33a Fax: 0228 98549 -50
53111 Bonn www.kippdata.de
HRB 8018 Amtsgericht Bonn / USt.-IdNr. DE 196 457 417
Geschäftsführer: Dr. Thomas Höfer, Rainer Jung, Sven Maurmann
===============================
kippdata
informationstechnologie GmbH Tel: +49 228 98549 -0
Bornheimer Str. 33a Fax: +49 228 98549 -50
D-53111 Bonn www.kippdata.de
HRB 8018 Amtsgericht Bonn / USt.-IdNr. DE 196 457 417
Geschäftsführer: Dr. Thomas Höfer, Rainer Jung, Sven Maurmann
---------------------------------------------------------------------
To start a new topic, e-mail: users@tomcat.apache.org
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
