Description

The Snoop servlet in Jakarta Tomcat 3.1 and 3.0 under Apache reveals sensitive system information when a remote attacker requests a nonexistent URL with a .snp extension.

Remediation

References

CVE-2000-0760

Related Vulnerabilities

PostgreSQL Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2015-0241)

WordPress Plugin CommentLuv Cross-Site Scripting (2.92.3)

WordPress Plugin WP Open Graph Cross-Site Request Forgery (1.6.1)

WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors Security Bypass (3.0.1)

Jetty Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-2080)

Severity

Medium

Classification

CVE-2000-0760

Tags

Missing Update Known Vulnerabilities