CVE-2005-1601

2005-05-1604:00:00

mitre

www.cve.org

AI Score

6.3

Confidence

Low

EPSS

0.008

Percentile

81.9%

JSON

MRO Maximo Self Service 4 and 5 stores certain information under the web document root using file extensions that are not processed by Tomcat, which allows remote attackers to obtain sensitive information via a direct request for the file, such as MXServer.properties.

References

secunia.com/advisories/15176

www.osvdb.org/16161

www.securityfocus.com/archive/1/397522

www.securityfocus.com/bid/13508

exchange.xforce.ibmcloud.com/vulnerabilities/20452