Search...

CVE-2000-1114

2001-01-09T00:00:00

ID CVE-2000-1114
Type cve
Reporter NVD
Modified 2008-09-05T16:22:41

Description

Unify ServletExec AS v3.0C allows remote attackers to read source code for JSP pages via an HTTP request that ends with characters such as ".", or "+", or "%20".

JSON Vulners Source

Initial Source

{"href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2000-1114", "history": [], "references": ["http://www.securityfocus.com/bid/1970", "http://archives.neohapsis.com/archives/bugtraq/2000-11/0285.html"], "lastseen": "2016-09-03T02:49:42", "bulletinFamily": "NVD", "title": "CVE-2000-1114", "cpe": ["cpe:/a:unify:ewave_servletexec:3.0", "cpe:/a:unify:ewave_servletexec:3.0c"], "viewCount": 0, "id": "CVE-2000-1114", "hash": "24580a18c8ccdd309c44687451ac06128364dadbeeefac7add82923b5e3a9a17", "description": "Unify ServletExec AS v3.0C allows remote attackers to read source code for JSP pages via an HTTP request that ends with characters such as \".\", or \"+\", or \"%20\".", "edition": 1, "assessment": {"name": "", "href": "", "system": ""}, "cvelist": ["CVE-2000-1114"], "scanner": [], "modified": "2008-09-05T16:22:41", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "objectVersion": "1.2", "reporter": "NVD", "type": "cve", "published": "2001-01-09T00:00:00", "enchantments": {"vulnersScore": 5.0}}

{"result": {"osvdb": [{"id": "OSVDB:6658", "type": "osvdb", "title": "Unify ServletExec JSP Source Disclosure", "description": "# No description provided by the source\n\n## References:\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2000-11/0285.html\n[CVE-2000-1114](https://vulners.com/cve/CVE-2000-1114)\nBugtraq ID: 1970\n", "published": "2000-11-21T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "https://vulners.com/osvdb/OSVDB:6658", "cvelist": ["CVE-2000-1114"], "lastseen": "2017-04-28T13:20:01"}], "exploitdb": [{"id": "EDB-ID:20412", "type": "exploitdb", "title": "Unify eWave ServletExec 3 JSP Source Disclosure Vulnerability", "description": "Unify eWave ServletExec 3 JSP Source Disclosure Vulnerability. CVE-2000-1114. Remote exploit for jsp platform", "published": "2000-11-21T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "https://www.exploit-db.com/exploits/20412/", "cvelist": ["CVE-2000-1114"], "lastseen": "2016-02-02T14:12:19"}]}}