CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2000-0760

The Snoop servlet in Jakarta Tomcat 3.1 and 3.0 under Apache reveals sensitive system information when a remote attacker requests a nonexistent URL with a .snp extension.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.377

EPSS Ranking 97.1%

CVSS Severity

CVSS v2 Score 6.4

References

http://www.securityfocus.com/bid/1532
http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26date%3D2000-07-15%26msg%3DPine.SUN.3.96.1000719235404.24004A-100000%40grex.cyberspace.org
http://www.securityfocus.com/bid/1532
http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26date%3D2000-07-15%26msg%3DPine.SUN.3.96.1000719235404.24004A-100000%40grex.cyberspace.org

Products affected by CVE-2000-0760

Apache » Tomcat » Version: 3.0

cpe:2.3:a:apache:tomcat:3.0
Apache » Tomcat » Version: 3.1

cpe:2.3:a:apache:tomcat:3.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2000-0760

Products

Pricing

Contact Us