|
Family: CGI abuses --> Category: infos
Tomcat's snoop servlet gives too much information Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of /examples/jsp/snp/anything.snp
Detailed Explanation for this Vulnerability Test
The 'snoop' tomcat's servlet is installed.
(/examples/jsp/snp/anything.snp)
This servlet gives too much information about
the remote host, such as the PATHs in use,
the host kernel version and so on...
This allows a possible hacker to gain more knowledge
about this host, and make more precise attacks
thanks to this.
Solution : delete this servlet
Threat Level: Low
Click HERE for more information and discussions on this network vulnerability scan.
|