Hello, One of our customers running Apache Tomcat version 4.1.29 ran some type of a vulnerability scanner which detected an "Apache Tomcat Web Root Path Disclosure Vulnerability". Did some research on the net and many sites mentioned that this vulnerability only affected 4.0.3.
is there a way to solve this problem : A vulnerability has been reported for Apache Tomcat 4.0.3 on a Microsoft Windows platform. Reportedly, it is possible for a remote attacker to make requests that will result in Apache Tomcat returning an error page containing information that includes the
can't we just catch this exception and return a customised error page! I have not tried this has anyone else tried this or something else? -- To unsubscribe, e-mail: mailto:[EMAIL PROTECTED] For additional commands, e-mail: mailto:[EMAIL PROTECTED]