The example SendMailServlet page that comes with Apache Tomcat is vulnerable to cross-site scripting via the "From" field.
Apache Tomcat is an implementation of the Java Servlet and JavaServer Page (JSP) technologies. Apache Tomcat includes a sample page called SendMailServlet, which is provided by sendmail.jsp. This page fails to properly validate input to the "From" field, which creates a cross-site scripting vulnerability. According to the vendor, the following versions of Apache Tomcat are affected
4.0.0 to 4.0.6
4.1.0 to 4.1.36
A remote attacker may be able to execute arbitrary script within the security context of the web site running Apache Tomcat. More information about cross-site scripting is available in CERT Advisory CA-2000-02.
Remove the examples web application
Thanks to Tomasz Kuczynski for reporting this vulnerability.
This document was written by Will Dormann.
|Date First Published:||2007-07-22|
|Date Last Updated:||2007-07-22 15:46 UTC|