Vulnerabilities > CVE-2000-0500 - Unspecified vulnerability in BEA Weblogic Server
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
The default configuration of BEA WebLogic 5.1.0 allows a remote attacker to view source code of programs by requesting a URL beginning with /file/, which causes the default servlet to display the file without further processing.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 8 |
Exploit-Db
description | BEA Systems WebLogic Express 3.1.8/4/5 Source Code Disclosure. CVE-2000-0500. Remote exploits for multiple platform |
id | EDB-ID:20027 |
last seen | 2016-02-02 |
modified | 2000-06-21 |
published | 2000-06-21 |
reporter | Foundstone Inc. |
source | https://www.exploit-db.com/download/20027/ |
title | BEA Systems WebLogic Express 3.1.8/4/5 Source Code Disclosure |