Exploit Jakarta Tomcat 3.x/4.0 - Error Message Information Disclosure

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
21073
Проверка EDB
  1. Пройдено
Автор
LOWNOISE
Тип уязвимости
LOCAL
Платформа
UNIX
CVE
null
Дата публикации
2001-08-16
Код:
source: https://www.securityfocus.com/bid/3199/info

When a malformed request is made for a Java Server Page the server displays an error page. The error page contains potentially sensitive information, along with the absolute path of the JSP file on the webserver, which may aid in further attacks.

Jakarta Tomcat can be configured to display an alternate error file. By default it is not. 

http://webserver.com/\java.jsp
 
Источник
www.exploit-db.com

Похожие темы