漏洞信息详情
Caucho Technology Resin 1.2 JSP源泄露漏洞
- CNNVD编号:CNNVD-200011-072
- 危害等级: 中危
![图片[1]-Caucho Technology Resin 1.2 JSP源泄露漏洞-一一网](https://www.proyy.com/skycj/data/images/2021-05-07/30f462579bec41fc25e0b1d57503e6d6.png)
- CVE编号:
CVE-2000-1224
- 漏洞类型:
输入验证
- 发布时间:
2000-11-23
- 威胁类型:
远程
- 更新时间:
2005-10-20
- 厂 商:
caucho_technology - 漏洞来源:
Discovered and sub… -
漏洞简介
Caucho Technology Resin 1.2,可能还包括其之前的版本存在漏洞。远程攻击者可以借助文件名中带有某些特定字符如(1)“..”,(2)“\\%2e..”(3)“\\%81”,(4)“\\%82”的.jsp文件的HTTP请求浏览JSP源。
漏洞公告
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com.
参考网址
来源: XF
名称: resin-jsp-source-disclosure(5568)
链接:http://xforce.iss.net/xforce/xfdb/5568
来源: BID
名称: 1986
链接:http://www.securityfocus.com/bid/1986
来源: BUGTRAQ
名称: 20001123 Re: RESIN ServletExec JSP Source Disclosure Vulnerability(Apache 1.3.6 Win2k))
链接:http://www.securityfocus.com/archive/1/146770
来源: BUGTRAQ
名称: 20001123 RESIN ServletExec JSP Source Disclosure Vulnerability(Apache 1.3.6 Win2k))
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=97502269408279&w=2
![[桜井宁宁]COS和泉纱雾超可爱写真福利集-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/4d3cf227a85d7e79f5d6b4efb6bde3e8.jpg)
![[桜井宁宁] 爆乳奶牛少女cos写真-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/d40483e126fcf567894e89c65eaca655.jpg)
