Intrusion Prevention

HTTP.Tomcat.Snoop.Servlet.Information.Disclosure

Description

It indicate a possible exploit of an Information Disclosure vulnerability in Apache Tomcat.

Apache Tomcat is suffers from an error that will display sensitive system information if it receives a request for a nonexistent URL with a .snp extension.

Affected Products

Apache Software Foundation Tomcat 3.0 - 3.1

Impact

Disclosure of sensitive data.

Recommended Actions

Apply appropriate patch from the vendor or Upgrade to non-vulnerable version if available.

CVE References

CVE-2000-0760