CVE-2000-0760

Name of the Vulnerable Software and Affected Versions Jakarta Tomcat versions 3.0 through 3.1

Description The issue concerns the Snoop servlet in Jakarta Tomcat, which reveals sensitive system information when a remote attacker requests a nonexistent URL with a .snp extension. This occurs because the snoop servlet includes output that identifies the Tomcat installation path.

Recommendations For Jakarta Tomcat versions 3.0 through 3.1, consider disabling the Snoop servlet as a temporary workaround to minimize the risk of exploitation, as there are no plans to issue an update for this issue.