CVE-2007-5366 Information

Description

The Tomcat 4.1-based Servlet Service in Fujitsu Interstage Application Server 7.0 through 9.0.0 and Interstage Apworks/Studio 7.0 through 9.0.0 allows remote attackers to obtain sensitive information (web root path) via unspecified vectors that trigger an error message probably related to enabling the useCanonCaches Java Virtual Machine (JVM) option.

Reference

http://osvdb.org/41318 http://secunia.com/advisories/27136 http://www.fujitsu.com/global/support/software/security/products-f/interstage-200705e.html http://www.securityfocus.com/bid/25988 https://exchange.xforce.ibmcloud.com/vulnerabilities/37026