← back
CVE-2001-0590

CVE-2001-0590

EPSS 11.0%
Apache Software Foundation Tomcat Servlet prior to 3.2.2 allows a remote attacker to read the source code to arbitrary 'jsp' files via a malformed URL request which does not end with an HTTP protocol specification (i.e. HTTP/1.0).
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/20716unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2001-04/0031.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/6971http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTL0112-004http://www.osvdb.org/5580