Allaire JRun 2.3.3, 3.0 and 3.1 running on IIS 4.0 and 5.0, iPlanet, Apache, JRun web server (JWS), and possibly other web servers allows remote attackers to read arbitrary files and directories by appending (1) "%3f.jsp", (2) "?.jsp" or (3) "?" to the requested URL.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:22:34
Updated: 2022-10-03T16:22:34
Reserved: 2022-10-03T00:00:00
Link: CVE-2001-1510
JSON object: View
NVD Information
Status : Analyzed
Published: 2001-12-31T05:00:00.000
Modified: 2008-09-05T20:26:44.357
Link: CVE-2001-1510
JSON object: View
Redhat Information
No data.
CWE