Vulnerability in Apache Tomcat

CVE-2000-1210

Directory traversal vulnerability in source.jsp of Apache Tomcat before 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the argument to source.jsp.

EPSS: 0.035 (87.5th percentile) — read the EPSS interpretation.

Affected products

Public proof-of-concept exploits

References

Frequently asked questions

What is CVE-2000-1210?
CVE-2000-1210 is a vulnerability in Apache Tomcat. Published 2002-03-22.
Is CVE-2000-1210 known to be exploited?
1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.