CVE-2006-2437

Medium

5/10

Summary

The viewfile servlet in the documentation package (resin-doc) for Caucho Resin 3.0.17 and 3.0.18 allows remote attackers to obtain the source code for file under the web root via the file parameter.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: PARTIAL
Availability Impact: NONE

References

Advisory Timeline

Published May 17, 2006

CVE-2006-2437

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS