Description

IBM HTTP Server 1.0 on AS/400 allows remote attackers to obtain the path to the web root directory and other sensitive information, which is leaked in an error mesage when a request is made for a non-existent Java Server Page (JSP).

Remediation

References

CVE-2002-1822

Related Vulnerabilities

WordPress Plugin Injectbody Spam Injection (All)

WordPress Plugin WP Plugin Manager (WPPM) Cross-Site Scripting (1.6.4.b)

TCExam Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4238)

WordPress Plugin Greg's High Performance SEO Cross-Site Scripting (1.6.1)

Apache HTTP Server Missing Authorization Vulnerability (CVE-2020-13938)

Severity

Medium

Classification

CVE-2002-1822

Tags

Missing Update Known Vulnerabilities