5
CVE-2001-1510
- EPSS 2.54%
- Veröffentlicht 31.12.2001 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:56:24
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Allaire JRun 2.3.3, 3.0 and 3.1 running on IIS 4.0 and 5.0, iPlanet, Apache, JRun web server (JWS), and possibly other web servers allows remote attackers to read arbitrary files and directories by appending (1) "%3f.jsp", (2) "?.jsp" or (3) "?" to the requested URL.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.54% | 0.829 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://online.securityfocus.com/archive/1/242843/2002-07-27/2002-08-02/2
http://online.securityfocus.com/archive/1/243203
http://www.iss.net/security_center/static/7623.php
http://www.macromedia.com/v1/handlers/index.cfm?ID=22262&Method=Full
http://www.securityfocus.com/archive/1/243636
http://www.securityfocus.com/bid/3592