VYPR
Moderate severityNVD Advisory· Published Dec 31, 2005· Updated Jun 16, 2026

CVE-2005-4703

CVE-2005-4703

Description

Apache Tomcat 4.0.3, when running on Windows, allows remote attackers to obtain sensitive information via a request for a file that contains an MS-DOS device name such as lpt9, which leaks the pathname in an error message, as demonstrated by lpt9.xtp using Nikto.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
org.apache.tomcat:tomcatMaven
<= 4.0.3

Affected products

2

Patches

Vulnerability mechanics

References

14

News mentions

0

No linked articles in our index yet.