CVE-2000-1024 Information

Description

eWave ServletExec 3.0C and earlier does not restrict access to the UploadServlet Java/JSP servlet which allows remote attackers to upload files and execute arbitrary commands.

Reference

http://marc.info/?l=bugtraq&m=97306581513537&w=2 http://www.securityfocus.com/bid/1876 https://exchange.xforce.ibmcloud.com/vulnerabilities/5450