CGI abuses : Blazix jsp source disclosure

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.51673

Categoría: CGI abuses

Título: Blazix jsp source disclosure

Resumen: NOSUMMARY

Descripción: Description:
The Blazix Java Web server
version 1.2 and earlier allows remote users
to disclose the contents of .jsp files by
appending a backslash or plug sign to the
jsp file's URL.

***WARNING: We could not exploit this vulnerability,
only determined that you are running a Blazix
web server. Please ensure that your software is
upgraded to version 1.2.1 or later.

Solution: Upgrade to version 1.2.1 or later.

Risk factor : Medium

CVSS Score:
5.0

Referencia Cruzada: BugTraq ID: 5566
Common Vulnerability Exposure (CVE) ID: CVE-2002-1451
http://www.securityfocus.com/bid/5566
BugTraq ID: 5567
http://www.securityfocus.com/bid/5567
Bugtraq: 20020824 Blazix 1.2 jsp view and free protected folder access (Google Search)
http://archives.neohapsis.com/archives/bugtraq/2002-08/0259.html
http://www.iss.net/security_center/static/9952.php

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.51673
Categoría:	CGI abuses
Título:	Blazix jsp source disclosure
Resumen:	NOSUMMARY
Descripción:	Description: The Blazix Java Web server version 1.2 and earlier allows remote users to disclose the contents of .jsp files by appending a backslash or plug sign to the jsp file's URL. ***WARNING: We could not exploit this vulnerability, only determined that you are running a Blazix web server. Please ensure that your software is upgraded to version 1.2.1 or later. Solution: Upgrade to version 1.2.1 or later. Risk factor : Medium CVSS Score: 5.0
Referencia Cruzada:	BugTraq ID: 5566 Common Vulnerability Exposure (CVE) ID: CVE-2002-1451 http://www.securityfocus.com/bid/5566 BugTraq ID: 5567 http://www.securityfocus.com/bid/5567 Bugtraq: 20020824 Blazix 1.2 jsp view and free protected folder access (Google Search) http://archives.neohapsis.com/archives/bugtraq/2002-08/0259.html http://www.iss.net/security_center/static/9952.php
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com