Description

Caucho Technology Resin 2.1.12 allows remote attackers to gain sensitive information and view the contents of the /WEB-INF/ directory via an HTTP request for "WEB-INF..", which is equivalent to "WEB-INF" in Windows.

Remediation

References

CVE-2004-0281

Related Vulnerabilities

MySQL CVE-2014-2440 Vulnerability (CVE-2014-2440)

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5868)

WordPress Plugin Ultimate Appointment Booking & Scheduling Unspecified Vulnerability (1.1.10)

WordPress Plugin DP Maintenance Mode Lite Cross-Site Scripting (1.3.2)

Moodle Improper Authentication Vulnerability (CVE-2010-1613)

Severity

Medium

Classification

CVE-2004-0281

Tags

Missing Update Known Vulnerabilities