CVE-2002-1567

Name of the Vulnerable Software and Affected Versions Apache Tomcat version 4.1

Description The issue allows remote attackers to execute arbitrary web script and steal cookies via a URL with encoded newlines followed by a request to a .jsp file whose name contains the script. This occurs because the unmodified requested URL is included in the 404 response header, and new lines in this URL appear to the client as the end of the header section. As a result, the remaining part of the URL, including the script elements, is treated as part of the response body, and the client executes the script.

Recommendations For Apache Tomcat version 4.1, consider updating to a version where Tomcat replaces potentially unsafe characters in the response headers with spaces to prevent the execution of arbitrary scripts.