Description
The default installation of Apache Tomcat 4.0 through 4.1 and 3.0 through 3.3.1 allows remote attackers to obtain the installation path and other sensitive system information via the (1) SnoopServlet or (2) TroubleShooter example servlets.
Remediation
References
Related Vulnerabilities
MediaWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2021-41799)
Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2017-17485)
WordPress Plugin Image Photo Gallery Final Tiles Grid Security Bypass (3.3.52)
WordPress Plugin Gwolle Guestbook Multiple Vulnerabilities (2.1.0)