Vulnerabilities > Caucho Technology > Resin > 3.0.17

DATE CVE VULNERABILITY TITLE RISK
2006-05-17 CVE-2006-2438 Information Disclosure vulnerability in Caucho Technology Resin 3.0.17/3.0.18
Directory traversal vulnerability in the viewfile servlet in the documentation package (resin-doc) for Caucho Resin 3.0.17 and 3.0.18 allows remote attackers to read arbitrary files under other web roots via the contextpath parameter.
network
low complexity
caucho-technology
5.0
5.0
2006-05-17 CVE-2006-2437 Information Disclosure vulnerability in Caucho Technology Resin 3.0.17/3.0.18
The viewfile servlet in the documentation package (resin-doc) for Caucho Resin 3.0.17 and 3.0.18 allows remote attackers to obtain the source code for file under the web root via the file parameter.
network
low complexity
caucho-technology
5.0
5.0
2006-05-17 CVE-2006-1953 Remote Directory Traversal vulnerability in Caucho Technology Resin 3.0.17/3.0.18
Directory traversal vulnerability in Caucho Resin 3.0.17 and 3.0.18 for Windows allows remote attackers to read arbitrary files via a "C:%5C" (encoded drive letter) in a URL.
network
low complexity
caucho-technology
7.8
7.8