CVE-2003-0044
Apache Tomcat 3.x-3.3.1a - Cross-Site Scripting in Examples and ROOT Web Applications
Title source: llmDescription
Multiple cross-site scripting (XSS) vulnerabilities in the (1) examples and (2) ROOT web applications for Jakarta Tomcat 3.x through 3.3.1a allow remote attackers to insert arbitrary web script or HTML.
References (10)
Core 10
Core References
Patch, Vendor Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2003/dsa-246
Vendor Advisory x_refsource_confirm
http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/6720
Third Party Advisory, VDB Entry vendor-advisory
x_refsource_hp
http://www.securityfocus.com/advisories/5111
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/11196
Third Party Advisory, US Government Resource third-party-advisory
government-resource
x_refsource_ciac
http://www.ciac.org/ciac/bulletins/n-060.shtml
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/9204
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/7972
Vendor Advisory x_refsource_confirm
http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txt
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/9203
Scores
EPSS
0.0913
EPSS Percentile
94.7%
Details
Status
published
Products (11)
apache/tomcat
3.0
apache/tomcat
3.1
apache/tomcat
3.1.1
apache/tomcat
3.2
apache/tomcat
3.2.1
apache/tomcat
3.2.3
apache/tomcat
3.2.4
apache/tomcat
3.3
apache/tomcat
3.3.1
apache/tomcat
3.3.1a
... and 1 more
Published
Feb 07, 2003
Tracked Since
Feb 18, 2026