EUVD-2002-0883

Malware in sbrugna...

EUVD-2002-0884

Malware in sbrugna...

NewAtlanta ServletExec/ISAPI 4.1 JSPServlet Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4796/info ServletExec/ISAPI is a plug-in Java Servlet/JSP engine for Microsoft IIS. It runs with IIS on Microsoft Windows NT/2000/XP systems. A denial of service condition occurs when the JSPServlet is sent an overly long...

NewAtlanta ServletExec/ISAPI 4.1 Path Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4793/info ServletExec/ISAPI is a plug-in Java Servlet/JSP engine for Microsoft IIS. It runs with IIS on Microsoft Windows NT/2000/XP systems. ServletExec/ISAPI discloses the absolute path to the webroot directory when sen...

NewAtlanta ServletExec/ISAPI 4.1 File Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/4795/info ServletExec/ISAPI is a plug-in Java Servlet/JSP engine for Microsoft IIS. It runs with IIS on Microsoft Windows NT/2000/XP systems. ServletExec/ISAPI will disclose the contents of arbitrary files within the...

CVE-2002-0892

CVE-2002-0892 affects ServletExec 4.1 ISAPI. Affected component is the JSP servlet filter (com.newatlanta.servletexec.JSP10Servlet). The root cause is an information disclosure: requesting a non-existent .JSP file or invoking the JSPServlet without a filename causes the server to leak the web roo...

CVE-2002-0892

The default configuration of NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to determine the path of the web root via a direct request to com.newatlanta.servletexec.JSP10Servlet without a filename, which leaks the pathname in an error message...

CVE-2002-0894

NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to cause a denial of service crash via 1 a request for a long .jsp file, or 2 a long URL sent directly to com.newatlanta.servletexec.JSP10Servlet...

CVE-2002-0893

Directory traversal vulnerability in NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to read arbitrary files via a URL-encoded request to com.newatlanta.servletexec.JSP10Servlet containing "..%5c" modified dot-dot sequences...

CVE-2002-0894

Affected software: NewAtlanta ServletExec ISAPI 4.1. The issue: remote denial of service caused by sending an overly long request for a .jsp file or a long URL to com.newatlanta.servletexec.JSP10Servlet. Vulnerable component: the ServletExec/JRun ISAPI handling for JSP requests. Impact: the remot...

CVE-2002-0893

Directory traversal vulnerability in NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to read arbitrary files via a URL-encoded request to com.newatlanta.servletexec.JSP10Servlet containing "..%5c" modified dot-dot sequences...

CVE-2002-0893

The CVE-2002-0893 entry maps to ServletExec 4.1 ISAPI vulnerability in the JSP10Servlet that enables directory traversal. Multiple connected sources describe that by issuing a URL-encoded "..%5c" (modified dot-dot) to com.newatlanta.servletexec.JSP10Servlet, an attacker can read arbitrary files w...

CVE-2002-0894

NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to cause a denial of service crash via 1 a request for a long .jsp file, or 2 a long URL sent directly to com.newatlanta.servletexec.JSP10Servlet...

NewAtlanta ServletExec/ISAPI 4.1 JSPServlet - Denial of Service

// source: https://www.securityfocus.com/bid/4796/info ServletExec/ISAPI is a plug-in Java Servlet/JSP engine for Microsoft IIS. It runs with IIS on Microsoft Windows NT/2000/XP systems. A denial of service condition occurs when the JSPServlet is sent an overly long request either directly or via...