CVE Vulnerabilities

CVE-2005-4833

Published: Dec 31, 2005 | Modified: Mar 08, 2011
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

IBM WebSphere Application Server (WAS) 6.0 before 20050201, when serving pages in an Application WAR or an Extended Document Root, allows remote attackers to obtain the JSP source code and other sensitive information via a specific JSP URL, related to lack of normalization of the URL format.

Affected Software

Name Vendor Start Version End Version
Websphere_application_server Ibm 6.0 (including) 6.0 (including)

References