CVE-2001-0829

Description

A cross-site scripting vulnerability in Apache Tomcat 3.2.1 allows a malicious webmaster to embed Javascript in a request for a .JSP file, which causes the Javascript to be inserted into an error message.

Affected products

• apache / Tomcat3.2.1 – 3.2.1

References

• MISChttp://jakarta.apache.org/tomcat/tomcat-3.2-doc/readme
• MISChttp://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00021.html
• MISChttp://www.securityfocus.com/bid/2982