CVE-2002-2008

Apache Tomcat 4.0.3 - Info Disclosure

Title source: llm
STIX 2.1

Description

Apache Tomcat 4.0.3 for Windows allows remote attackers to obtain the web root path via an HTTP request for a resource that does not exist, such as lpt9, which leaks the information in an error message.

Scores

EPSS 0.0711
EPSS Percentile 93.5%

Details

Status published
Products (2)
apache/tomcat 4.0.3
org.apache.tomcat/tomcat 0 - 4.1.3Maven
Published Dec 31, 2002
Tracked Since Feb 18, 2026