We just recieved a threat scan from an outside company which requires us to update Tomcat in order to continue processing credit card orders. Initially this seemed simple. Tomcat says we need either version 5.0.SVN or 5.5.26. Our vendor (Adobe Live Cycle) claims that we shouldn't touch Tomcat directly and requires JBoss 3.2.5 to work properly. Would you please provide simple steps and guidelines for how to patch Tomcat without breaking everything else? We need to act ASAP!! Installed Versions: JBoss 3.2.5 Tomcat 5.0.26 Java VM 1.4.2_12-b03 View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4163379#... Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...