CVE-2001-1510

Allaire JRun 2.3.3, 3.0 and 3.1 running on IIS 4.0 and 5.0, iPlanet, Apache, JRun web server JWS, and possibly other web servers allows remote attackers to read arbitrary files and directories by appending 1 "%3f.jsp", 2 "?.jsp" or 3 "?" to the requested URL...

Multiple Web Server finger CGI Information Disclosure

The 'finger' CGI is installed. This can be used by a remote attacker to enumerate accounts on the system. Such information is typically valuable in conducting additional, more focused attacks. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...