Bajie Webserver Absolute Path Disclosure Vulnerability

Solution:
Remove/disable the offending servlet, /servlet/test/pathInfo/test.

This issue has been addressed in Bajie Java HTTP Server versions 0.92 and later.


Bajie Java HTTP Server 0.90


 

Privacy Statement
Copyright 2010, SecurityFocus