Miggo Logo
Book a Demo
Miggo Vulnerability Database
CVE-2002-2006

CVE-2002-2006:
Apache Tomcat Default Installation Reveals Sensitive Information

5

CVSS Score

Basic Information

CVE ID
CVE-2002-2006
GHSA ID
GHSA-8g4f-fh7f-4fwh
EPSS Score
-
CWE
-
Published
4/30/2022
Updated
2/12/2024
KEV Status
No
Technology
TechnologyJava

Technical Details

CVSS Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
org.apache.tomcat:tomcatmaven>= 4.0.0, < 4.1.04.1.0
org.apache.tomcat:tomcatmaven>= 3.0, < 3.3a3.3a

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability explicitly involves two example servlets (SnoopServlet and TroubleShooter) that were included in default installations. These servlets' request handling methods would appear in runtime profiles when exploited, as they directly process attacker requests to disclose sensitive information. The Tomcat security page confirms these were mitigation targets in version 4.0.2/4.1.0+ by removal/disablement. Though no code diffs are provided, the CVE description and Tomcat's own security notes explicitly identify these components as the vulnerability source.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

T** ****ult inst*ll*tion o* *p**** Tom**t *.* t*rou** *.* *n* *.* t*rou** *.*.* *llows r*mot* *tt**k*rs to o*t*in t** inst*ll*tion p*t* *n* ot**r s*nsitiv* syst*m in*orm*tion vi* t** (*) SnoopS*rvl*t or (*) Trou*l*S*oot*r *x*mpl* s*rvl*ts.

Reasoning

T** vuln*r**ility *xpli*itly involv*s two *x*mpl* s*rvl*ts (SnoopS*rvl*t *n* Trou*l*S*oot*r) t**t w*r* in*lu*** in ****ult inst*ll*tions. T**s* s*rvl*ts' r*qu*st **n*lin* m*t*o*s woul* *pp**r in runtim* pro*il*s w**n *xploit**, *s t**y *ir**tly pro**