CVE-2000-1224 in Resininfo

Summary

Caucho Technology Resin 1.2 and possibly earlier allows remote attackers to view JSP source via an HTTP request to a .jsp file with certain characters appended to the file name, such as (1) "..", (2) "%2e..", (3) "%81", (4) "%82", and others.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

05/19/2005

Disclosure

11/23/2000

Moderation

VulDB entry created

Entries

VDB-16017 (1)

CPE

ready

CWE

CWE-200 (Confirmed)

Exploit

Download

CVSS

5.3

EPSS

0.08189

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2000-1224
NVD	https://nvd.nist.gov/vuln/detail/CVE-2000-1224
CVE Details	https://www.cvedetails.com/cve/CVE-2000-1224/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!