5

CVE-2001-1510

Exploit

EPSS 3.73%
Published 31.12.2001 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Allaire JRun 2.3.3, 3.0 and 3.1 running on IIS 4.0 and 5.0, iPlanet, Apache, JRun web server (JWS), and possibly other web servers allows remote attackers to read arbitrary files and directories by appending (1) "%3f.jsp", (2) "?.jsp" or (3) "?" to the requested URL.

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

Macromedia ≫ Jrun Version2.3.3

Macromedia ≫ Jrun Version3.0

Macromedia ≫ Jrun Version3.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	3.73%	0.875

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://online.securityfocus.com/archive/1/242843/2002-07-27/2002-08-02/2

http://online.securityfocus.com/archive/1/243203

http://www.iss.net/security_center/static/7623.php

Exploit

http://www.macromedia.com/v1/handlers/index.cfm?ID=22262&Method=Full

Vendor Advisory

Exploit

http://www.securityfocus.com/archive/1/243636

http://www.securityfocus.com/bid/3592

https://nvd.nist.gov/vuln/detail/CVE-2001-1510

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2001-1510

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2001-1510

EUVD