Apache Tomcat suffers from a XML parser replacement related information disclosure vulnerability. Versions affected include Tomcat 6.0.0 to 6.0.18, Tomcat 5.5.0 to 5.5.27, and Tomcat 4.1.0 to 4.1.39.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/78092/CVE-2009-0783.txt
Source: https://packetstormsecurity.com/files/78092/Apache-Tomcat-Information-Disclosure.html