CVE-2001-0829

N/A Unknown

Published: December 06, 2001 Modified: April 16, 2026

Description

A cross-site scripting vulnerability in Apache Tomcat 3.2.1 allows a malicious webmaster to embed Javascript in a request for a .JSP file, which causes the Javascript to be inserted into an error message.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00021.html

Source: cve@mitre.org

http://jakarta.apache.org/tomcat/tomcat-3.2-doc/readme

Source: cve@mitre.org

Patch Vendor Advisory

http://www.securityfocus.com/bid/2982

Source: cve@mitre.org

Exploit Patch Vendor Advisory

http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00021.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://jakarta.apache.org/tomcat/tomcat-3.2-doc/readme

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://www.securityfocus.com/bid/2982

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit Patch Vendor Advisory

6 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

1.0%

77th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

apache