CVE-2000-1224 Information

Description

Caucho Technology Resin 1.2 and possibly earlier allows remote attackers to view JSP source via an HTTP request to a .jsp file with certain characters appended to the file name such as (1) ..\ (2) \2e..\ (3) \81\ (4) \82\ and others.

Reference

http://marc.info/?l=bugtraq&m=97502269408279&w=2 http://www.securityfocus.com/archive/1/146770 http://www.securityfocus.com/bid/1986 https://exchange.xforce.ibmcloud.com/vulnerabilities/5568