Apache Tomcat Servlet / JSP Container Default Files

This script is Copyright (C) 2004-2016 David Kyger


Synopsis :

The remote web server contains example files.

Description :

Example JSPs and Servlets are installed in the remote Apache Tomcat
servlet / JSP container. These files should be removed as they may
help an attacker uncover information about the remote Tomcat install
or host itself. The example files may also contain vulnerabilities
such as cross-site scripting vulnerabilities.

Solution :

Review the files and delete those that are not needed.

Risk factor :

Medium / CVSS Base Score : 6.8
(CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P)

Family: Web Servers

Nessus Plugin ID: 12085 ()

Bugtraq ID:

CVE ID: