Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148.
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
EUVD-2022-1681 | Apache Tomcat 4.0.5 and earlier, when using both the invoker servlet and the default servlet, allows remote attackers to read source code for server files or bypass certain protections, a variant of CAN-2002-1148. |
![]() |
GHSA-8v5p-2cpv-c2x6 | Apache Tomcat Source Code Disclosure |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-08T03:19:28.888Z
Reserved: 2003-01-06T00:00:00
Link: CVE-2002-1394

No data.

Status : Deferred
Published: 2003-01-17T05:00:00.000
Modified: 2025-04-03T01:03:51.193
Link: CVE-2002-1394


No data.