CVE-2003-0044

Apache Tomcat 3.x-3.3.1a - Cross-Site Scripting in Examples and ROOT Web Applications

Title source: llm
STIX 2.1

Description

Multiple cross-site scripting (XSS) vulnerabilities in the (1) examples and (2) ROOT web applications for Jakarta Tomcat 3.x through 3.3.1a allow remote attackers to insert arbitrary web script or HTML.

References (10)

Core 10
Core References
Patch, Vendor Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2003/dsa-246
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/6720
Third Party Advisory, VDB Entry vendor-advisory x_refsource_hp
http://www.securityfocus.com/advisories/5111
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/11196
Third Party Advisory, US Government Resource third-party-advisory government-resource x_refsource_ciac
http://www.ciac.org/ciac/bulletins/n-060.shtml
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/9204
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/7972
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/9203

Scores

EPSS 0.0913
EPSS Percentile 94.7%

Details

Status published
Products (11)
apache/tomcat 3.0
apache/tomcat 3.1
apache/tomcat 3.1.1
apache/tomcat 3.2
apache/tomcat 3.2.1
apache/tomcat 3.2.3
apache/tomcat 3.2.4
apache/tomcat 3.3
apache/tomcat 3.3.1
apache/tomcat 3.3.1a
... and 1 more
Published Feb 07, 2003
Tracked Since Feb 18, 2026