https://bz.apache.org/bugzilla/show_bug.cgi?id=59243
--- Comment #7 from Mark Thomas ---
Bugzilla is not a support forum. Your questions belong on the users mailing
list.
--
You are receiving this mail because:
You are the assignee for the bug.
-
https://bz.apache.org/bugzilla/show_bug.cgi?id=59243
--- Comment #6 from muthukumar ---
Ok We whitelisted that paths.. But we want a proper solution . Whitelisted is a
proper solution ? Please explain me the CVE 2008-5515
--
You are receiving this mail because:
You are the assignee for the bug.
https://bz.apache.org/bugzilla/show_bug.cgi?id=59243
--- Comment #5 from Christopher Schultz ---
(In reply to Violeta Georgieva from comment #4)
> Fix your application.
Correct. The path-traversal vulnerability has been introduced by your own
application, not by Tomcat.
One of the best ways to
https://bz.apache.org/bugzilla/show_bug.cgi?id=59243
Violeta Georgieva changed:
What|Removed |Added
Status|REOPENED|RESOLVED
Resolution|---
https://bz.apache.org/bugzilla/show_bug.cgi?id=59243
--- Comment #3 from muthukumar ---
Think my scenario . It is possible to make path traversal attack . It must be a
security issue?
--
You are receiving this mail because:
You are the assignee for the bug.
https://bz.apache.org/bugzilla/show_bug.cgi?id=59243
muthukumar changed:
What|Removed |Added
Status|RESOLVED|REOPENED
Resolution|INVALID
https://bz.apache.org/bugzilla/show_bug.cgi?id=59243
Violeta Georgieva changed:
What|Removed |Added
Status|NEW |RESOLVED
Resolution|---
