CVE-2000-1210

EPSS 3.7%

Apache Tomcat Directory Traversal

Published: 4/30/2022Modified: 11/8/2023

Description

Directory traversal vulnerability in source.jsp of Apache Tomcat before 3.1 allows remote attackers to read arbitrary files via a `..` (dot dot) in the argument to source.jsp.

Affected packages (1)

Maven/org.apache.tomcat:tomcatfrom 0, <= 3.1

References (3)

ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2000-1210
WEBhttp://marc.info/?l=bugtraq&m=95371672300045&w=2
WEBhttps://web.archive.org/web/20020818015647/http://www.iss.net/security_center/static/4205.php