10 lines
No EOL
527 B
Text
10 lines
No EOL
527 B
Text
source: https://www.securityfocus.com/bid/1531/info
|
|
|
|
A vulnerability exists in the JSP portion of the Tomcat package, version 3.1, from the Apache Software Foundation. Upon hitting an nonexistent JSP file, too much information is presented by the server as part of the error message. This information may be useful to a would be attacker in conducting further attacks.
|
|
|
|
http://narco.guerrilla.sucks.co:8080/anything.jsp
|
|
|
|
Error: 404
|
|
Location: /anything.jsp
|
|
|
|
JSP file "/appsrv2/jakarta-tomcat/webapps/ROOT/anything.jsp" not found |