CVE-2005-1601 Information

Description

MRO Maximo Self Service 4 and 5 stores certain information under the web document root using file extensions that are not processed by Tomcat which allows remote attackers to obtain sensitive information via a direct request for the file such as MXServer.properties.

Reference

http://secunia.com/advisories/15176 http://www.osvdb.org/16161 http://www.securityfocus.com/archive/1/397522 http://www.securityfocus.com/bid/13508 https://exchange.xforce.ibmcloud.com/vulnerabilities/20452