5

CVE-2005-0425

EPSS 0.35%
Published 02.05.2005 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Unknown vulnerability in IBM Websphere Application Server 5.0, 5.1, and 6.0 when running on Windows, allows remote attackers to obtain the source code for Java Server Pages (.jsp) via a crafted URL that causes the page to be processed by the file serving servlet instead of the JSP engine.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Ibm ≫ Websphere Application Server Version5.0

Ibm ≫ Websphere Application Server Version5.1.0

Ibm ≫ Websphere Application Server Version6.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.35%	0.546

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://secunia.com/advisories/14274

Patch

Vendor Advisory

http://www-1.ibm.com/support/docview.wss?uid=swg24008814

Patch

Vendor Advisory

http://www-1.ibm.com/support/docview.wss?uid=swg24008815

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2005-0425

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-0425

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-0425

EUVD