Oracle Jserv Executes outside of doc_root

Detects Vulnerability in the execution of JSPs outside docroot. A potential security vulnerability has been discovered in Oracle JSP releases 1.0.x through 1.1.1 in Apache/Jserv. This vulnerability permits access to and execution of unintended JSP files outside the docroot in Apache/Jserv. For...

CVE-2001-0591

CVE-2001-0591 is a directory traversal vulnerability in Oracle JSP 1.0.x–1.1.1 and Oracle 8.1.7 iAS Release 1.0.2 that allows remote attackers to read or execute arbitrary .jsp files via a '..' path traversal. The connected Nessus entry confirms the CVE is among Oracle Application Server vulnerab...