Description

IBM HTTP Server 1.0 on AS/400 allows remote attackers to obtain the path to the web root directory and other sensitive information, which is leaked in an error mesage when a request is made for a non-existent Java Server Page (JSP).

Remediation

References

CVE-2002-1822

Related Vulnerabilities

Liferay Portal Missing Authorization Vulnerability (CVE-2023-33948)

IBMHttpServer Observable Discrepancy Vulnerability (CVE-2023-32342)

WordPress Plugin Social Sharing-Sassy Social Share Cross-Site Scripting (3.3.44)

AngularJS Inefficient Regular Expression Complexity Vulnerability (CVE-2024-21490)

phpMyAdmin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2009-1151)

Severity

Medium

Classification

CVE-2002-1822

Tags

Missing Update Known Vulnerabilities