Privilege Escalation through Jakarta Tomcat Web.xml File Processing

Privilege Escalation through Jakarta Tomcat Web.xml File Processing

CVE-2003-0043 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Jakarta Tomcat before 3.3.1a, when used with JDK 1.3.1 or earlier, uses trusted privileges when processing the web.xml file, which could allow remote attackers to read portions of some files through the web.xml file.

Learn more about our Cis Benchmark Audit For Apache Tomcat.