on 2/12/04 11:17 AM, Shapira, Yoav wrote: > Have you tried this with a more recent tomcat version?
No. I've not been able to isolate the bug well enough to reproduce it, so there's nothing to test with. I have only observed the vulnerability in our current production server. I've since disabled access for the IP range that was generating the problematic http requests. Chris --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
