CVE-2002-1822

Name of the Vulnerable Software and Affected Versions IBM HTTP Server version 1.0 on AS/400

Description The issue allows remote attackers to obtain the path to the web root directory and other sensitive information. This information is leaked in an error message when a request is made for a non-existent Java Server Page (JSP).

Recommendations For IBM HTTP Server version 1.0 on AS/400, consider restricting access to the server until a fix is available to prevent information leakage. As a temporary workaround, avoid making requests for non-existent JSP files to minimize the risk of sensitive information disclosure. At the moment, there is no information about a newer version that contains a fix for this issue.