Apache Tomcat Examples Web Root Path Disclosure

This script is Copyright (C) 2010-2016 Tenable Network Security, Inc.

Synopsis :

The remote Apache Tomcat server is affected by an information
disclosure vulnerability.

Description :

The instance of Apache Tomcat listening on the remote host is affected
by an information disclosure vulnerability. An attacker is able to
determine the Tomcat application's web root path by requesting any one
of numerous example files.

See also :


Solution :

Upgrade to 3.3a or later.

Risk factor :

Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 4.8
Public Exploit Available : true

Family: Web Servers

Nessus Plugin ID: 50688 ()

Bugtraq ID: 4877

CVE ID: CVE-2002-2007

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now