Servletexec Isapi Security Vulnerabilities and Issues — Servletexec Isapi CVE List

Lucene search

New Atlanta CommunicationsServletexec Isapi

3 matches found

CVE•added 2002/10/04 4:0 a.m.•49 views

CVE-2002-0893

Directory traversal vulnerability in NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to read arbitrary files via a URL-encoded request to com.newatlanta.servletexec.JSP10Servlet containing "..%5c" (modified dot-dot) sequences.

5CVSS6.7AI score0.07062EPSS

CVE•added 2003/04/02 5:0 a.m.•41 views

CVE-2002-0892

The default configuration of NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to determine the path of the web root via a direct request to com.newatlanta.servletexec.JSP10Servlet without a filename, which leaks the pathname in an error message.

5CVSS6.6AI score0.05767EPSS

CVE•added 2002/10/04 4:0 a.m.•33 views

CVE-2002-0894

NewAtlanta ServletExec ISAPI 4.1 allows remote attackers to cause a denial of service (crash) via (1) a request for a long .jsp file, or (2) a long URL sent directly to com.newatlanta.servletexec.JSP10Servlet.

5CVSS6.8AI score0.05668EPSS