Oracle 9i Application Server Java Server Page Source Code Disclosure Vulnerability

Oracle 9i Application Server Java Server Page Source Code Disclosure Vulnerability

9i Application Server (9iAS) is the web application server infrastructure distributed by Oracle.

A vulnerability has been reported in 9iAS that results in information disclosure. Under some circumstances, it is possible to for a remote user to create a condition that results in the disclosure of Java Server Page source code. This could allow an attacker to gain access to information that could be used in a more directed attack.