Description

IBM HTTP Server 1.0 on AS/400 allows remote attackers to obtain the path to the web root directory and other sensitive information, which is leaked in an error mesage when a request is made for a non-existent Java Server Page (JSP).

Remediation

References

CVE-2002-1822

Related Vulnerabilities

WordPress 4.5.x PHP Object Injection (4.5 - 4.5.23)

PostgreSQL Improper Access Control Vulnerability (CVE-2019-10127)

WordPress Plugin Visitor Maps and Who's Online Cross-Site Scripting (1.5.8.6)

Oracle Database Server CVE-2009-1971 Vulnerability (CVE-2009-1971)

phpMyFAQ Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-15730)

Severity

Medium

Classification

CVE-2002-1822

Tags

Missing Update Known Vulnerabilities