Apache.Tomcat.Servlet.Path.Disclosure
Description
This indicates an attack attempt against a path disclosure vulnerability in Apache Tomcat.
The vulnerability is caused by an error when the vulnerable software handles a malicious uri. It allows a remote attacker to get the Apache Tomcat installation path.
Affected Products
apache software foundation tomcat 4.1.0
apache software foundation tomcat 4.0.3
apache software foundation tomcat 4.0.2
apache software foundation tomcat 4.0.1
apache software foundation tomcat 4.0.0
apache software foundation tomcat 3.3.1
apache software foundation tomcat 3.3
apache software foundation tomcat 3.2.4
apache software foundation tomcat 3.2.3
apache software foundation tomcat 3.2.1
apache software foundation tomcat 3.2
apache software foundation tomcat 3.1.1
apache software foundation tomcat 3.1
apache software foundation tomcat 3.0
Impact
Information disclosure
Recommended Actions
Upgrade to the latest version, available from the website.
http://tomcat.apache.org/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2021-01-11 | 16.995 |