Family: CGI abuses --> Category: infos
Snoop Servlet path disclosure Vulnerability Scan
Vulnerability Scan Summary
Attempts to enumerate physical path
Detailed Explanation for this Vulnerability Test
The remote web server is affected by an information disclosure flaw.
This script attempts to enumerate the actual physical path of the
servlet classes by requesting a version of 'snoopservlet' which is
missing required classes. A possible hacker, gaining information about the
actual physical layout of the file system, can use the information in
crafting more complex attacks.
If not required, uninstall the default applications.
Low / CVSS Base Score : 2
Click HERE for more information and discussions on this network vulnerability scan.