Vulnerability in Apache Tomcat
CVE-2000-1210
Directory traversal vulnerability in source.jsp of Apache Tomcat before 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the argument to source.jsp.
EPSS: 0.035 (87.5th percentile) — read the EPSS interpretation.
Affected products
- Apache Tomcat
- N/a — versions n/a
Public proof-of-concept exploits
References
- cve@mitre.org (Patch, vdb-entry, Vendor Advisory, x_refsource_XF)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
Frequently asked questions
- What is CVE-2000-1210?
- CVE-2000-1210 is a vulnerability in Apache Tomcat. Published 2002-03-22.
- Is CVE-2000-1210 known to be exploited?
- 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.