Apache Tomcat 5.5.9 pen-test questions.

[rlvi_2001 () yahoo com]

Hi everybody. I am wondering if a server only has port 80 and 22 open. It's using jsp for design.It's running Openssh 
on port 22. Is there anyways to penetrate this server? Also, i am able to find an injection on another site, but i am 
not able to extract the Table name, and i couldn't do anything about it. I tried to use manual guess the table name, 
but no goal. Could anybody tell me why this is happening? Thank you very much. This site is running with Apache 2.2. 
Thank you very much. Your reply will be greatly appriciated. 

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------