TOMCAT Vulnerability

Unanswered Question
Feb 20th, 2008

TOMCAT now exist in our WCS v4.1.83.0. The fix is in the Is it necessary to de-install 4.1.83 before installing 4.1.92?

Is this upgrade really necessary?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
mchin345 Tue, 02/26/2008 - 14:17

Use this workaround.

Filters that deny HTTPS packets using TCP port 443 should be deployed throughout the network as part of a tACL policy for protection of traffic which enters the network at ingress access points. This policy should be configured to protect the network device where the filter is applied and other devices behind it. Filters for HTTPS packets using TCP port 443 should also be deployed in front of vulnerable network devices so that traffic is only allowed from trusted clients.[email protected]


This Discussion