Описание
Apache Tomcat 5 before 5.5.17 allows remote attackers to list directories via a semicolon (;) preceding a filename with a mapped extension, as demonstrated by URLs ending with /;index.jsp and /;help.do.
Ссылки
- ExploitPatch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:apache:tomcat:5.0.28:*:*:*:*:*:*:*
cpe:2.3:a:apache:tomcat:5.5.7:*:*:*:*:*:*:*
cpe:2.3:a:apache:tomcat:5.5.9:*:*:*:*:*:*:*
cpe:2.3:a:apache:tomcat:5.5.12:*:*:*:*:*:*:*
cpe:2.3:a:apache:tomcat:5.5.16:*:*:*:*:*:*:*
EPSS
Процентиль: 98%
0.51861
Средний
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
redhat
почти 19 лет назад
Apache Tomcat 5 before 5.5.17 allows remote attackers to list directories via a semicolon (;) preceding a filename with a mapped extension, as demonstrated by URLs ending with /;index.jsp and /;help.do.
debian
почти 19 лет назад
Apache Tomcat 5 before 5.5.17 allows remote attackers to list director ...
EPSS
Процентиль: 98%
0.51861
Средний
5 Medium
CVSS2
Дефекты
NVD-CWE-Other