4 matches found
CVE-2002-1855
Macromedia JRun 3.0 through 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot "WEB-INF."...
CVE-2002-1855
CVE-2002-1855 describes an information-disclosure flaw in Macromedia JRun 3.0–4.0 on Windows, where requesting WEB-INF. with a trailing dot exposes files under WEB-INF (Java classes/config). Several feeds (NVD, Red Hat, CVE list, OpenVAS/Nessus) reiterate that this affects Win32 J2EE containers a...
CVE-2002-1855
Macromedia JRun 3.0 through 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot "WEB-INF."...
CVE-2002-1855
Macromedia JRun 3.0 through 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot "WEB-INF."...