You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@tomcat.apache.org by Terry Lake <te...@vontu.com> on 2005/01/12 01:36:20 UTC
Is there a cross-site scripting fix for Tomcat 5.0.25? - Plain Text
Hello all,
After checking Google, CERT and the Jakarta site, I can not find any
information with regards to the availability of fix a for Tomcat 5.0.25.
Note that I found mentioned of a fix for 3.0.x, and 4.0.x on Google and
the Jakarta site. BTW, I did not find any information indicating that
there is a problem with the 5.0.25 version but given that the cross-site
scripting defect is present in older and newer versions (5.5.4), I
assume that this vulnerability exists for the version in question.
Thank in advance for any help that you provide.
Terry C. Lake
QA Manager
Vontu, Inc.
www.vontu.com
415-364-8131 - Direct
415-364-8190 - Fax
terry.lake@vontu.com
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-user-help@jakarta.apache.org