Lucene search
Copyright (C) 2002 Matt MooreOPENVAS:136141256231011046HistoryNov 03, 2005 - 12:00 a.m.
Apache Tomcat TroubleShooter Servlet Installed
2005-11-0300:00:00
Copyright (C) 2002 Matt Moore
plugins.openvas.org
11
6.1 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.018 Low
EPSS
Percentile
88.1%
The remote Apache Tomcat Server is vulnerable to cross script scripting and
path disclosure issues.
# SPDX-FileCopyrightText: 2002 Matt Moore
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
CPE = "cpe:/a:apache:tomcat";
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.11046");
script_version("2023-08-01T13:29:10+0000");
script_tag(name:"last_modification", value:"2023-08-01 13:29:10 +0000 (Tue, 01 Aug 2023)");
script_tag(name:"creation_date", value:"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)");
script_tag(name:"cvss_base", value:"5.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:N/A:N");
script_cve_id("CVE-2002-2006");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/4575");
script_name("Apache Tomcat TroubleShooter Servlet Installed");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2002 Matt Moore");
script_family("Web application abuses");
script_dependencies("gb_apache_tomcat_consolidation.nasl");
script_require_ports("Services/www", 8080);
script_mandatory_keys("apache/tomcat/http/detected");
script_tag(name:"solution", value:"Example files should not be left on production servers.");
script_tag(name:"summary", value:"The remote Apache Tomcat Server is vulnerable to cross script scripting and
path disclosure issues.");
script_tag(name:"insight", value:"The default installation of Tomcat includes various sample jsp pages and
servlets.
One of these, the 'TroubleShooter' servlet, discloses various information about
the system on which Tomcat is installed. This servlet can also be used to
perform cross-site scripting attacks against third party users.");
script_tag(name:"solution_type", value:"Mitigation");
script_tag(name:"qod_type", value:"remote_vul");
exit(0);
}
include("http_func.inc");
include("http_keepalive.inc");
include("host_details.inc");
if( ! port = get_app_port( cpe:CPE, service:"www" ) ) exit( 0 );
if( ! dir = get_app_location( cpe:CPE, port:port ) ) exit( 0 );
url = "/examples/servlet/TroubleShooter";
req = http_get( item:url, port:port );
res = http_keepalive_send_recv( port:port, data:req );
confirmed = string( "TroubleShooter Servlet Output" );
confirmed_too = string( "hiddenValue" );
if( ( confirmed >< res ) && ( confirmed_too >< res ) ) {
report = http_report_vuln_url( port:port, url:url );
security_message( port:port, data:report );
exit( 0 );
}
exit( 99 );
References
Related
nessus
nessus
Apache Tomcat TroubleShooter Servlet Information Disclosure
2002-07-15 00:00:00
Apache Tomcat 4.x < 4.1.0 Multiple Vulnerabilities
2010-11-04 00:00:00
osv
osv
Apache Tomcat Default Installation Reveals Sensitive Information
2022-04-30 18:22:18
github
github
Apache Tomcat Default Installation Reveals Sensitive Information
2022-04-30 18:22:18
cve
cve
CVE-2002-2006
2002-12-31 05:00:00
tomcat
tomcat
Fixed in Apache Tomcat 4.1.0
2005-07-14 00:00:00
Fixed in Apache Tomcat 3.3a
2000-09-19 00:00:00
checkpoint_advisories
checkpoint_advisories
6.1 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.018 Low
EPSS
Percentile
88.1%
Related for OPENVAS:136141256231011046