Multiple Vendor JSP Source Code Disclosure Vulnerability

Bugtraq ID: 1328
Class: Design Error
Remote: Yes
Local: Yes
Published: Jun 08 2000 12:00AM
Updated: Jun 08 2000 12:00AM
Credit: Unify Exploit : Discovered by Niclas Vikstrom and posted to NTbugtraq on June 8, 2000. BEA Systems exploit : Discovered by Shreeraj Shah and published by Foundstone, Inc., June 12, 2000. IBM WebSphere Application Server exploit : Discovered by Shreeraj
Vulnerable: Unify eWave ServletExec 3.0
IBM Websphere Application Server 3.0.2 .1
BEA Systems Weblogic Server 4.5.1
BEA Systems Weblogic 4.0.4
BEA Systems Weblogic 3.1.8
Not Vulnerable: Unify eWave ServletExec 3.0 c


Privacy Statement
Copyright 2010, SecurityFocus