5
CVE-2005-1112
- EPSS 8.64%
- Veröffentlicht 02.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:12:27
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
IBM WebSphere Application Server 6.0 and earlier, when sharing the document root of the web server, allows remote attackers to obtain the source code for Java Server Pages (.jsp) via an HTTP request with an invalid Host header, which causes the page to be processed by the web server instead of the JSP engine.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ibm ≫ Websphere Application Server Version5.0
Ibm ≫ Websphere Application Server Version5.0.1
Ibm ≫ Websphere Application Server Version5.0.2
Ibm ≫ Websphere Application Server Version5.0.2.1
Ibm ≫ Websphere Application Server Version5.0.2.3
Ibm ≫ Websphere Application Server Version5.0.2.4
Ibm ≫ Websphere Application Server Version5.0.2.5
Ibm ≫ Websphere Application Server Version5.0.2.6
Ibm ≫ Websphere Application Server Version5.0.2.7
Ibm ≫ Websphere Application Server Version5.0.2.8
Ibm ≫ Websphere Application Server Version5.0.2.9
Ibm ≫ Websphere Application Server Version5.1.0
Ibm ≫ Websphere Application Server Version5.1.0.2
Ibm ≫ Websphere Application Server Version5.1.0.4
Ibm ≫ Websphere Application Server Version5.1.0.5
Ibm ≫ Websphere Application Server Version5.1.1
Ibm ≫ Websphere Application Server Version5.1.1.1
Ibm ≫ Websphere Application Server Version5.1.1.2
Ibm ≫ Websphere Application Server Version5.1.1.3
Ibm ≫ Websphere Application Server Version6.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 8.64% | 0.944 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://marc.info/?l=bugtraq&m=111342594129109&w=2
http://secunia.com/advisories/14962
http://securitytracker.com/id?1013697
http://www.osvdb.org/15501
http://www.securityfocus.com/bid/13160
https://exchange.xforce.ibmcloud.com/vulnerabilities/20099