CVE-2006-7166 Information

Description

IBM WebSphere Application Server (WAS) 5.1.1.9 and earlier allows remote attackers to obtain JSP source code and other sensitive information via \a specific JSP URL.\

Reference

http://secunia.com/advisories/24478 http://www.securityfocus.com/bid/22991 http://www.vupen.com/english/advisories/2007/0970 http://www-1.ibm.com/support/docview.wss?uid=swg21243541 http://www-1.ibm.com/support/docview.wss?uid=swg24011720