CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-0281

Caucho Technology Resin 2.1.12 allows remote attackers to gain sensitive information and view the contents of the /WEB-INF/ directory via an HTTP request for "WEB-INF..", which is equivalent to "WEB-INF" in Windows.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.134

EPSS Ranking 93.9%

CVSS Severity

CVSS v2 Score 5.0

References

http://marc.info/?l=bugtraq&m=107635084830547&w=2
http://www.securityfocus.com/bid/9617
https://exchange.xforce.ibmcloud.com/vulnerabilities/15087
http://marc.info/?l=bugtraq&m=107635084830547&w=2
http://www.securityfocus.com/bid/9617
https://exchange.xforce.ibmcloud.com/vulnerabilities/15087

Products affected by CVE-2004-0281

Caucho » Resin » Version: 2.1.12

cpe:2.3:a:caucho:resin:2.1.12

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-0281

Products

Pricing

Contact Us