 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 10444 |
| Category: | CGI abuses |
| Title: | JRun's viewsource.jsp |
| Summary: | NOSUMMARY |
| Description: | Description: The CGI viewsource.jsp is installed. This CGI allows an attacker to download any file from the remote host, with the privileges of the web server. Solution: Remove the JSP sample files or upgrade to JRUN 2.3.3 or higher. Risk factor : High See also : http://www.macromedia.com/devnet/security/security_zone/asb00-15.html |
| Cross-Ref: |
BugTraq ID: 1386 Common Vulnerability Exposure (CVE) ID: CVE-2000-0540 Allaire Security Bulletin: ASB00-015 http://www.allaire.com/handlers/index.cfm?ID=16290&Method=Full http://www.securityfocus.com/bid/1386 http://www.osvdb.org/2713 XForce ISS Database: jrun-read-sample-files(4774) https://exchange.xforce.ibmcloud.com/vulnerabilities/4774 |
| Copyright | This script was written by Renaud Deraison |
| This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |