HTTP: Tomcat Snoop Servlet Information Disclosure
This signature detects attempts to exploit a snoop servlet vulnerability in the Apache Tomcat package. Versions 3.0 and 3.1 are susceptible. Attackers can request a nonexistent URL with the .snp extension to produce an error message that contains sensitive server information, such as full paths and OS data.
Extended Description
A vulnerability exists in the snoop servlet portion of the Tomcat package, version 3.1, from the Apache Software Foundation. Upon hitting an nonexistent file with the .snp extension, too much information is presented by the server as part of the error message. This information may be useful to a would be attacker in conducting further attacks. This information includes full paths, OS information, and other information that may be sensitive.
Affected Products
Apache_software_foundation tomcat
Short Name
HTTP:INFO-LEAK:SNOOP-DISLOSURE
Severity
Info
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CVE-2000-0760 Disclosure Information Servlet Snoop Tomcat bid:1532
Release Date
04/22/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Rarely
Vendors
Apache_software_foundation
CVSS Score
6.4