CVE-2004-0281

Medium

5/10

Summary

Caucho Technology Resin 2.1.12 allows remote attackers to gain sensitive information and view the contents of the /WEB-INF/ directory via an HTTP request for "WEB-INF..", which is equivalent to "WEB-INF" in Windows.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: PARTIAL
Availability Impact: NONE

References

Advisory Timeline

Published Nov 23, 2004

CVE-2004-0281

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS