CVE-2006-7164

2007-03-20T10:19:00
ID CVE-2006-7164
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T21:16:00

Description

SimpleFileServlet in IBM WebSphere Application Server 5.0.1 through 5.0.2.7 on Linux and UNIX does not block certain invalid URIs and does not issue a security challenge, which allows remote attackers to read secure files and obtain sensitive information via certain requests.