- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 21469
- Проверка EDB
-
- Пройдено
- Автор
- MATT MOORE
- Тип уязвимости
- REMOTE
- Платформа
- WINDOWS
- CVE
- cve-2002-0892
- Дата публикации
- 2002-05-22
Код:
source: https://www.securityfocus.com/bid/4793/info
ServletExec/ISAPI is a plug-in Java Servlet/JSP engine for Microsoft IIS. It runs with IIS on Microsoft Windows NT/2000/XP systems.
ServletExec/ISAPI discloses the absolute path to the webroot directory when sent a specially formatted request without a trailing filename.
This type of sensitive information may aid in further attacks against the host running the vulnerable software.
http://target/servlet/com.newatlanta.servletexec.JSP10Servlet/- Источник
- www.exploit-db.com
