Description
The default installation of Apache Tomcat 4.0 through 4.1 and 3.0 through 3.3.1 allows remote attackers to obtain the installation path and other sensitive system information via the (1) SnoopServlet or (2) TroubleShooter example servlets.
Remediation
References
Related Vulnerabilities
Joomla CVE-2019-14654 Vulnerability (CVE-2019-14654)
MODX Improper Certificate Validation Vulnerability (CVE-2017-7322)
Oracle Application Server Incorrect Calculation of Buffer Size Vulnerability (CVE-2004-1363)
WordPress Plugin Bitcoin/Altcoin Faucet Cross-Site Request Forgery (1.6.0)
WordPress Plugin WP Booking Calendar Multiple Vulnerabilities (3.0.0)