CVE-2005-0425 Information

Description

Unknown vulnerability in IBM Websphere Application Server 5.0 5.1 and 6.0 when running on Windows allows remote attackers to obtain the source code for Java Server Pages (.jsp) via a crafted URL that causes the page to be processed by the file serving servlet instead of the JSP engine.

Reference

http://secunia.com/advisories/14274 http://www-1.ibm.com/support/docview.wss?uid=swg24008814 http://www-1.ibm.com/support/docview.wss?uid=swg24008815