Macromedia JRun JSP Unicode Null Byte String Source Code Extraction

2002-06-27T23:14:17
ID OSVDB:5028
Type osvdb
Reporter Peter Gründl(pgrundl@kpmg.dk)
Modified 2002-06-27T23:14:17

Description

Vulnerability Description

JRun contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a HTTP GET request with a unicode null sting occurs, which will disclose .jsp source code information resulting in a loss of confidentiality, proprietary code or sensitive information to the attacker.

Solution Description

The software vendor macromedia has released a patch to correct the vulnerability in JRun 3.0, JRun 3.1 and JRun 4.0. Please visit the vendor site to retrieve and for instruction on how to implement the patch.

Short Description

JRun contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a HTTP GET request with a unicode null sting occurs, which will disclose .jsp source code information resulting in a loss of confidentiality, proprietary code or sensitive information to the attacker.

References:

Vendor Specific Solution URL: http://download.macromedia.com/pub/security/jrun/40/MPSB02-06_jrun4-patch.zip Vendor Specific Advisory URL ISS X-Force ID: 9459 Generic Informational URL: http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0138.html CVE-2002-1025 Bugtraq ID: 5134