Thanks
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Thursday, May 25, 2006 11:27 AM
To: Tomcat Users List
Subject: Re: Apache Cookie Buffer Overflow
you scanner "may not work so well", it thinks that Tomcat is Apache httpd,
The warnings you se
> Apparently JBOSS came bundled with Apache Tomcat/5.5.9
>
> Our current environment is:
> Windows 2003 SP1
> JBOSS 4.0.2
> JVM Version: 1.4.2_11-b06
> Apache Tomcat/5.5.9
>
> Our security scanner has picked up 2 security vulnerabilities on this
> server.
>
> &
on this server.
"Apache Cookie Buffer Overflow"
"HTTP Buffer Overflows"
Our security scanner indicated that we need to upgrade from Apache v1.1.1 to
v1.3.2... but since we are already on Apache Tomcat/5.5.9... I don't think that
is correct.
The scanner also indicat
