CVE-2005-4838

Name of the Vulnerable Software and Affected Versions Jakarta Tomcat versions 5.5.6 and earlier

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities in the example web applications for Jakarta Tomcat. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via specific JSP files, including el/functions.jsp, el/implicit-objects.jsp, and jspx/textRotate.jspx in the examples/jsp2/ directory. The vulnerability can be demonstrated by injecting script in a request to snp/snoop.jsp. The issue is due to the failure of various JSPs to escape user-provided data before including it in the returned page, making them susceptible to cross-site scripting attacks.

Recommendations For Jakarta Tomcat versions 5.5.6 and earlier, consider disabling access to the vulnerable JSP files, such as el/functions.jsp, el/implicit-objects.jsp, and jspx/textRotate.jspx, until a patch is available. Restrict access to the examples/jsp2/ directory to minimize the risk of exploitation. Avoid using the snp/snoop.jsp endpoint with untrusted input until the issue is resolved.