VulnerableCode Package Details - pkg:maven/org.apache.tomcat/tomcat@4.0.3

Search for packages

Vulnerability	Summary	Fixed by
VCID-asn2-b2sv-aaap Aliases: CVE-2005-4703 GHSA-x89r-2wjq-mj7x	Apache Tomcat 4.0.3, when running on Windows, allows remote attackers to obtain sensitive information via a request for a file that contains an MS-DOS device name such as lpt9, which leaks the pathname in an error message, as demonstrated by lpt9.xtp using Nikto.	There are no reported fixed by versions.
VCID-av1e-fm3v-aaag Aliases: CVE-2002-0935 GHSA-xmf4-j3j7-xj7q	Apache Tomcat 4.0.3, and possibly other versions before 4.1.3 beta, allows remote attackers to cause a denial of service (resource exhaustion) via a large number of requests to the server with null characters, which causes the working threads to hang.	4.1.3-beta Affected by 0 other vulnerabilities. 4.1.3 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-asn2-b2sv-aaap
Aliases:
CVE-2005-4703
GHSA-x89r-2wjq-mj7x

Apache Tomcat 4.0.3, when running on Windows, allows remote attackers to obtain sensitive information via a request for a file that contains an MS-DOS device name such as lpt9, which leaks the pathname in an error message, as demonstrated by lpt9.xtp using Nikto.

There are no reported fixed by versions.

VCID-av1e-fm3v-aaag
Aliases:
CVE-2002-0935
GHSA-xmf4-j3j7-xj7q

Apache Tomcat 4.0.3, and possibly other versions before 4.1.3 beta, allows remote attackers to cause a denial of service (resource exhaustion) via a large number of requests to the server with null characters, which causes the working threads to hang.

4.1.3-beta
Affected by 0 other vulnerabilities.

4.1.3
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T13:19:40.734792+00:00	Apache Tomcat Importer	Affected by	VCID-av1e-fm3v-aaag	https://tomcat.apache.org/security-4.html	36.0.0
2024-09-18T08:17:50.616874+00:00	Apache Tomcat Importer	Affected by	VCID-av1e-fm3v-aaag	https://tomcat.apache.org/security-4.html	34.0.1
2024-09-17T22:36:54.150244+00:00	GitLab Importer	Affected by	VCID-asn2-b2sv-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2005-4703.yml	34.0.1
2024-09-17T22:02:54.349808+00:00	GHSA Importer	Affected by	VCID-asn2-b2sv-aaap	https://github.com/advisories/GHSA-x89r-2wjq-mj7x	34.0.1
2024-01-04T02:15:53.663004+00:00	Apache Tomcat Importer	Affected by	VCID-av1e-fm3v-aaag	https://tomcat.apache.org/security-4.html	34.0.0rc1
2024-01-03T17:59:57.848380+00:00	GitLab Importer	Affected by	VCID-asn2-b2sv-aaap	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.apache.tomcat/tomcat/CVE-2005-4703.yml	34.0.0rc1
2024-01-03T17:37:42.705300+00:00	GHSA Importer	Affected by	VCID-asn2-b2sv-aaap	https://github.com/advisories/GHSA-x89r-2wjq-mj7x	34.0.0rc1