4 matches found
[security bulletin] SSRT061108 rev.2 - HP Systems Insight Manager Remote Unauthorized Access - Directory Traversal
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c00597967 Version: 2 HPSBMA02096 SSRT061108 rev.2 - HP Systems Insight Manager Remote Unauthorized Access - Directory Traversal NOTICE: The information in this Security Bulletin should be acted up...
CVE-2005-2006
CVE-2005-2006 affects JBOSS 3.2.2–3.2.7 and 4.0.2, enabling remote attackers to obtain sensitive information via two GET request patterns: (1) a ".%" sequence revealing installation path, and (2) a trailing % before a filename revealing file contents. The SUSE/Security Bulletin context confirms t...
JBoss org.jboss.web.WebServer Class Multiple Vulnerabilities (Source Disc, ID)
The remote JBoss server is vulnerable to an information disclosure flaw that could allow an attacker to retrieve the physical path of the server installation, its security policy, or to guess its exact version number. An attacker may use this flaw to gain more information about the remote...
CVE-2005-2006
JBOSS 3.2.2 through 3.2.7 and 4.0.2 allows remote attackers to obtain sensitive information via a GET request 1 with a "%." percent dot, which reveals the installation path or 2 with a % percent before a filename, which reveals the contents of the file...