Vulnerabilities > CVE-2002-1990 - Path Disclosure vulnerability in Caucho Technology Resin 2.0/2.1.1/2.1.2

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
caucho-technology
NVD
Published: 2002-12-31
Updated: 2008-09-05

Summary

Resin 2.0.5 through 2.1.2 allows remote attackers to reveal physical path information via a URL request for the example Java class file HelloServlet.

Vulnerable Configurations

Part Description Count
Application
Caucho_Technology
3

References