Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Apache Tomcat Snoop Servlet Remote Information Disclosure

Medium

Synopsis

The remote host may give an attacker information useful for future attacks.

Description

The remote Tomcat server has the 'snoop' servlet installed. This servlet discloses valuable information about the remote host, such as the server type and version, the PATHs in use, and the kernel version of the remote host. An attacker may use this information to gain intimate knowledge about this host and make more precise attacks against it.

Solution

Delete this servlet