Apache Tomcat HTTP Server Directory Traversal

November 24, 2010 SecurityOrb_Staff 0

Apache Tomcat is the servlet container for JavaServlet and JavaServer Page Web applications.

A vulnerability in Apache Tomcat HTTP server may allow for directory traversal attacks. The vulnerability is cause by a misconfiguration of certain modules. An attacker could craft a special URL to view directories and files on the HTTP server without authorization. […]