Tomcat JSP Source Code Exposure Vulnerability (CVE-2002-1148)

• Email
• Facebook
• 
  Twitter
• Google+
• Linkedin

  Severity: MEDIUM

---

  DESCRIPTION

The default servlet (org.apache.catalina.servlets.DefaultServlet) in Tomcat 4.0.4 and 4.1.10 and earlier allows remote attackers to read source code for server files via a direct request to the servlet.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1000637