This indicates an attempt to exploit an information-disclosure vulnerability in Apache Tomcat.
The vulnerability is a result of the application's failure to validate user input before processing HTTP requests. As a result, a remote attacker can send a crafted request to obtain the sensitive information on the server.
Apache Tomcat 4.x, 5.x, 6.x
Apply the latest update from the vendor.