System	Score	Found at
generic_textual	MODERATE	http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a
generic_textual	MODERATE	http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txt
generic_textual	MODERATE	http://marc.info/?l=bugtraq&m=104394568616290&w=2
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
epss	0.55831	https://api.first.org/data/v1/epss?cve=CVE-2003-0042
apache_tomcat	Important	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0042
generic_textual	MODERATE	http://secunia.com/advisories/7972
generic_textual	MODERATE	http://secunia.com/advisories/7977
generic_textual	MODERATE	https://exchange.xforce.ibmcloud.com/vulnerabilities/11194
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-qfw2-wvrw-mvw4
generic_textual	MODERATE	https://github.com/apache/tomcat
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2003-0042
generic_textual	MODERATE	http://www.ciac.org/ciac/bulletins/n-060.shtml
generic_textual	MODERATE	http://www.debian.org/security/2003/dsa-246
generic_textual	MODERATE	http://www.securityfocus.com/advisories/5111
generic_textual	MODERATE	http://www.securityfocus.com/bid/6721

Reference id	Reference type	URL
		http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a
		http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/
		http://jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txt
		http://marc.info/?l=bugtraq&m=104394568616290&w=2
		https://api.first.org/data/v1/epss?cve=CVE-2003-0042
		http://secunia.com/advisories/7972
		http://secunia.com/advisories/7977
		https://exchange.xforce.ibmcloud.com/vulnerabilities/11194
		https://github.com/apache/tomcat
		https://nvd.nist.gov/vuln/detail/CVE-2003-0042
		http://www.ciac.org/ciac/bulletins/n-060.shtml
		http://www.debian.org/security/2003/dsa-246
		http://www.securityfocus.com/advisories/5111
		http://www.securityfocus.com/bid/6721
CVE-2003-0042		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0042
CVE-2003-0042;OSVDB-12232	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/22205.txt
CVE-2003-0042;OSVDB-12232	Exploit	https://www.securityfocus.com/bid/6721/info
GHSA-qfw2-wvrw-mvw4		https://github.com/advisories/GHSA-qfw2-wvrw-mvw4

Data source	Exploit-DB
Date added	Jan. 26, 2003
Description	Apache Tomcat 3.x - Null Byte Directory / File Disclosure
Ransomware campaign use	Known
Source publication date	Jan. 26, 2003
Exploit type	remote
Platform	linux
Source update date	Oct. 24, 2012
Source URL	https://www.securityfocus.com/bid/6721/info

Percentile	0.97978
EPSS Score	0.55831
Published At	July 31, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-31T08:03:31.758898+00:00	Apache Tomcat Importer	Import	https://tomcat.apache.org/security-3.html	37.0.0